Analysis Overview
SHA256
793d8850b2bc88071892297a2db39d044c8fe8db19918a0530cec893f4d795a0
Threat Level: Likely malicious
The file AHHHHHHH.exe was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Executes dropped EXE
Legitimate hosting services abused for malware hosting/C2
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Probable phishing domain
Subvert Trust Controls: Mark-of-the-Web Bypass
Unsigned PE
Browser Information Discovery
Suspicious use of FindShellTrayWindow
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Suspicious behavior: EnumeratesProcesses
NTFS ADS
Modifies registry class
Suspicious use of AdjustPrivilegeToken
Enumerates system info in registry
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Checks SCSI registry key(s)
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-27 08:55
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-27 08:55
Reported
2024-08-27 09:04
Platform
win11-20240802-en
Max time kernel
486s
Max time network
480s
Command Line
Signatures
Downloads MZ/PE file
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AHHHHHHH.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | discord.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Probable phishing domain
| Description | Indicator | Process | Target |
| HTTP URL | https://chatgpt.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8b9ae097cfaa634c | N/A | N/A |
| HTTP URL | https://auth.openai.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8b9ae10519ded1fa | N/A | N/A |
Subvert Trust Controls: Mark-of-the-Web Bypass
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\AHHHHHHH.exe:Zone.Identifier | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Browser Information Discovery
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-131918955-2378418313-883382443-1000\{0C68A1B9-B4F0-4C4B-9BB1-24335BCD1018} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-131918955-2378418313-883382443-1000\{97C81CC2-2CC8-4E75-9AE9-5AA52599D41B} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 242951.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\AHHHHHHH.exe:Zone.Identifier | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
| Description | Indicator | Process | Target |
| Token: 33 | N/A | C:\Windows\system32\AUDIODG.EXE | N/A |
| Token: SeIncBasePriorityPrivilege | N/A | C:\Windows\system32\AUDIODG.EXE | N/A |
| Token: SeDebugPrivilege | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| Token: SeSystemProfilePrivilege | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| Token: SeCreateGlobalPrivilege | N/A | C:\Windows\system32\taskmgr.exe | N/A |
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Users\Admin\AppData\Local\Temp\AHHHHHHH.exe
"C:\Users\Admin\AppData\Local\Temp\AHHHHHHH.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x108,0x10c,0x110,0xe4,0x114,0x7ffef5f73cb8,0x7ffef5f73cc8,0x7ffef5f73cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1936 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2292 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2520 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3228 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4816 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4088 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3524 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3308 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5052 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5684 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5340 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5860 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004CC 0x00000000000004E0
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6048 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=3580 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3988 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4804 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5572 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5568 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5100 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6460 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6604 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6388 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6148 /prefetch:8
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1648 /prefetch:2
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /0
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Users\Admin\Downloads\AHHHHHHH.exe
"C:\Users\Admin\Downloads\AHHHHHHH.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x104,0x108,0x10c,0xe0,0x110,0x7ffef5f73cb8,0x7ffef5f73cc8,0x7ffef5f73cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1848 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2552 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4300 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4896 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3568 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5352 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3976 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5056 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5000 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5796 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5700 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5536 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5568 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6300 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6492 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5652 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6896 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6912 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7248 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7032 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7548 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7768 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7920 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8132 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8312 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8468 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8564 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8708 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6588 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9104 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9272 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8976 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9640 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9648 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9420 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9976 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10156 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9572 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9596 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10788 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10768 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10948 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9204 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7148 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11832 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11408 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11348 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12084 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12152 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11840 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11352 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11276 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8484 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11900 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7736 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8632 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12200 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=9156 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10228 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9936 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11260 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10852 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8804 /prefetch:1
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004CC 0x00000000000004E0
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11220 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6624 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10824 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3868 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 134.32.126.40.in-addr.arpa | udp |
| GB | 92.123.142.91:443 | www.bing.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 92.123.142.129:443 | th.bing.com | tcp |
| GB | 92.123.142.177:443 | r.bing.com | tcp |
| GB | 92.123.142.177:443 | r.bing.com | tcp |
| GB | 92.123.142.129:443 | th.bing.com | tcp |
| US | 204.79.197.200:443 | bing.com | tcp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| US | 162.159.136.232:443 | discord.com | tcp |
| US | 162.159.136.232:443 | discord.com | tcp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 8.8.8.8:53 | cdn.localizeapi.com | udp |
| US | 8.8.8.8:53 | cdn.prod.website-files.com | udp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| FR | 142.250.179.106:443 | ajax.googleapis.com | tcp |
| US | 104.18.34.227:443 | cdn.prod.website-files.com | tcp |
| US | 104.22.21.64:443 | cdn.localizeapi.com | tcp |
| GB | 2.18.190.80:80 | apps.identrust.com | tcp |
| US | 104.18.34.227:443 | cdn.prod.website-files.com | tcp |
| CZ | 65.9.94.213:443 | d3e54v103j8qbb.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 80.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.94.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.34.18.104.in-addr.arpa | udp |
| US | 104.18.32.137:443 | geolocation.onetrust.com | tcp |
| US | 162.159.133.234:443 | remote-auth-gateway.discord.gg | tcp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | gateway.discord.gg | udp |
| US | 162.159.133.234:443 | gateway.discord.gg | tcp |
| US | 162.159.128.233:443 | status.discord.com | tcp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 8.8.8.8:53 | status.discord.com | udp |
| US | 162.159.133.232:443 | images-ext-1.discordapp.net | tcp |
| US | 162.159.133.232:443 | images-ext-1.discordapp.net | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| GB | 184.28.176.98:443 | tcp | |
| GB | 184.28.176.98:443 | tcp | |
| US | 52.182.143.214:443 | browser.pipe.aria.microsoft.com | tcp |
| GB | 184.28.176.98:443 | tcp | |
| US | 8.8.8.8:53 | 214.143.182.52.in-addr.arpa | udp |
| GB | 184.28.176.98:443 | tcp | |
| GB | 184.28.176.106:443 | tcp | |
| GB | 184.28.176.106:443 | tcp | |
| GB | 184.28.176.106:443 | tcp | |
| GB | 184.28.176.112:443 | tcp | |
| GB | 184.28.176.112:443 | tcp | |
| GB | 184.28.176.112:443 | tcp | |
| GB | 184.28.176.112:443 | tcp | |
| GB | 184.28.176.112:443 | tcp | |
| US | 52.182.143.214:443 | browser.pipe.aria.microsoft.com | tcp |
| US | 4.150.241.254:443 | arm-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | 711e646c3d3021f57618857341b52f5a.azr.footprintdns.com | udp |
| IN | 20.219.13.99:443 | 711e646c3d3021f57618857341b52f5a.azr.footprintdns.com | tcp |
| US | 8.8.8.8:53 | 254.241.150.4.in-addr.arpa | udp |
| GB | 184.28.176.112:443 | tcp | |
| US | 8.8.8.8:53 | static-ecst.licdn.com | udp |
| FR | 152.199.21.118:443 | static-ecst.licdn.com | tcp |
| US | 8.8.8.8:53 | 118.21.199.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.13.219.20.in-addr.arpa | udp |
| GB | 184.28.176.104:443 | tcp | |
| GB | 184.28.176.104:443 | tcp | |
| GB | 184.28.176.104:443 | tcp | |
| GB | 184.28.176.104:443 | tcp | |
| GB | 184.28.176.104:443 | tcp | |
| GB | 184.28.176.104:443 | tcp | |
| GB | 184.28.176.99:443 | tcp | |
| GB | 184.28.176.99:443 | tcp | |
| GB | 184.28.176.99:443 | tcp | |
| GB | 184.28.176.99:443 | tcp | |
| GB | 184.28.176.99:443 | tcp | |
| GB | 95.101.129.146:443 | r.bing.com | tcp |
| GB | 173.222.211.41:443 | aefd.nelreports.net | tcp |
| US | 8.8.8.8:53 | 41.211.222.173.in-addr.arpa | udp |
| GB | 95.101.129.235:443 | th.bing.com | tcp |
| GB | 95.101.129.201:443 | th.bing.com | tcp |
| GB | 95.101.129.201:443 | th.bing.com | tcp |
| GB | 95.101.129.235:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | 201.129.101.95.in-addr.arpa | udp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| GB | 143.204.68.94:443 | www.sitepoint.com | tcp |
| GB | 143.204.68.94:443 | www.sitepoint.com | tcp |
| US | 8.8.8.8:53 | cdn.sanity.io | udp |
| US | 8.8.8.8:53 | uploads.sitepoint.com | udp |
| US | 8.8.8.8:53 | eu.posthog.com | udp |
| US | 34.149.250.58:443 | cdn.sanity.io | tcp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| US | 8.8.8.8:53 | cmp.inmobi.com | udp |
| US | 8.8.8.8:53 | cdn4.buysellads.net | udp |
| GB | 143.204.68.94:443 | www.sitepoint.com | tcp |
| GB | 143.204.68.94:443 | www.sitepoint.com | tcp |
| GB | 143.204.68.94:443 | www.sitepoint.com | tcp |
| GB | 18.244.179.36:443 | uploads.sitepoint.com | tcp |
| GB | 18.244.179.36:443 | uploads.sitepoint.com | tcp |
| GB | 18.245.162.106:443 | eu.posthog.com | tcp |
| GB | 18.244.179.36:443 | uploads.sitepoint.com | tcp |
| GB | 18.245.162.106:443 | eu.posthog.com | tcp |
| US | 8.8.8.8:53 | learnable-images.sitepoint.com | udp |
| US | 8.8.8.8:53 | s3.sitepoint.com | udp |
| US | 8.8.8.8:53 | 36.179.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.250.149.34.in-addr.arpa | udp |
| DE | 18.195.247.28:443 | eu.i.posthog.com | tcp |
| DE | 18.195.247.28:443 | eu.i.posthog.com | tcp |
| DE | 18.195.247.28:443 | eu.i.posthog.com | tcp |
| US | 8.8.8.8:53 | o388912.ingest.sentry.io | udp |
| GB | 143.204.68.94:443 | www.sitepoint.com | tcp |
| GB | 143.204.68.94:443 | www.sitepoint.com | tcp |
| US | 34.120.195.249:443 | o388912.ingest.sentry.io | tcp |
| US | 8.8.8.8:53 | 249.195.120.34.in-addr.arpa | udp |
| US | 34.149.250.58:443 | cdn.sanity.io | udp |
| US | 34.120.195.249:443 | o388912.ingest.sentry.io | udp |
| GB | 18.244.114.102:443 | cmp.inmobi.com | tcp |
| GB | 18.245.162.85:443 | script.tapfiliate.com | tcp |
| GB | 18.244.114.102:443 | cmp.inmobi.com | tcp |
| DK | 157.240.200.14:443 | connect.facebook.net | tcp |
| DK | 157.240.200.14:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | a.omappapi.com | udp |
| US | 8.8.8.8:53 | 85.162.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.114.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.200.240.157.in-addr.arpa | udp |
| GB | 143.244.38.136:443 | a.omappapi.com | tcp |
| DE | 3.125.91.136:443 | api.cmp.inmobi.com | tcp |
| DE | 3.125.91.136:443 | api.cmp.inmobi.com | tcp |
| US | 172.64.154.78:443 | static.vidazoo.com | tcp |
| DE | 3.125.91.136:443 | api.cmp.inmobi.com | tcp |
| DE | 3.125.91.136:443 | api.cmp.inmobi.com | tcp |
| US | 8.8.8.8:53 | 78.154.64.172.in-addr.arpa | udp |
| NL | 152.42.150.143:443 | cdn4.buysellads.net | tcp |
| NL | 152.42.150.143:443 | cdn4.buysellads.net | tcp |
| US | 8.8.8.8:53 | api.omappapi.com | udp |
| US | 172.66.41.8:443 | api.omappapi.com | tcp |
| US | 172.66.41.8:443 | api.omappapi.com | tcp |
| GB | 108.138.217.76:443 | learnable-images.sitepoint.com | tcp |
| GB | 108.138.217.76:443 | learnable-images.sitepoint.com | tcp |
| US | 8.8.8.8:53 | 76.217.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.41.66.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| FR | 157.240.196.35:443 | www.facebook.com | tcp |
| US | 34.222.117.141:443 | meta-events.sitepoint.com | tcp |
| US | 34.222.117.141:443 | meta-events.sitepoint.com | tcp |
| US | 34.222.117.141:443 | meta-events.sitepoint.com | tcp |
| FR | 157.240.196.35:443 | www.facebook.com | tcp |
| FR | 157.240.196.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | 141.117.222.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.196.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.150.42.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | 166.214.58.216.in-addr.arpa | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | pbjs.e-planning.net | udp |
| US | 8.8.8.8:53 | ads.servenobid.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| DE | 51.89.9.252:443 | onetag-sys.com | tcp |
| FR | 51.178.195.208:443 | prg.smartadserver.com | tcp |
| FR | 51.178.195.208:443 | prg.smartadserver.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 159.89.225.186:443 | exchange.cootlogix.com | tcp |
| US | 159.89.225.186:443 | exchange.cootlogix.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| IE | 52.17.71.243:443 | ads.servenobid.com | tcp |
| DE | 37.252.171.149:443 | ib.adnxs.com | tcp |
| NL | 193.3.178.3:443 | pbjs.e-planning.net | tcp |
| GB | 159.65.211.77:443 | srv.buysellads.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| US | 8.8.8.8:53 | 149.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.211.65.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.225.89.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| GB | 108.156.39.15:443 | config.aps.amazon-adsystem.com | tcp |
| GB | 18.245.189.34:443 | aax.amazon-adsystem.com | tcp |
| GB | 18.245.143.100:443 | tags.crwdcntrl.net | tcp |
| GB | 23.53.174.156:443 | secure.cdn.fastclick.net | tcp |
| US | 104.22.53.173:443 | cdn.hadronid.net | tcp |
| FR | 142.250.179.65:443 | 33d955c3200799d9834fd819230d2a31.safeframe.googlesyndication.com | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| FR | 216.58.214.66:443 | ep1.adtrafficquality.google | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | 65.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| GB | 159.65.211.77:443 | srv.buysellads.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 172.67.23.234:443 | a.ad.gt | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| FR | 178.250.7.13:443 | gum.criteo.com | tcp |
| FR | 178.250.7.13:443 | gum.criteo.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| DE | 51.89.9.252:443 | onetag-sys.com | udp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| GB | 2.16.170.43:443 | hb.trustedstack.com | tcp |
| GB | 95.100.245.251:443 | eus.rubiconproject.com | tcp |
| GB | 108.156.39.36:443 | public.servenobid.com | tcp |
| US | 157.230.226.111:443 | sync.cootlogix.com | tcp |
| GB | 95.100.244.20:443 | contextual.media.net | tcp |
| US | 34.98.64.218:443 | buysellads-d.openx.net | tcp |
| GB | 2.18.108.192:443 | ads.pubmatic.com | tcp |
| US | 151.101.1.108:443 | acdn.adnxs.com | tcp |
| US | 67.202.105.24:443 | pixel.33across.com | tcp |
| IE | 54.77.40.67:443 | rtb.gumgum.com | tcp |
| NL | 89.149.192.76:443 | ssbsync.smartadserver.com | tcp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | tcp |
| GB | 23.214.129.249:443 | secure-assets.rubiconproject.com | tcp |
| US | 54.90.152.160:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 172.64.145.29:443 | cdn.dxkulture.com | tcp |
| US | 8.8.8.8:53 | 67.40.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | eu-west-1-cs-rtb.openwebmp.com | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| GB | 13.224.222.128:443 | eu-west-1-cs-rtb.openwebmp.com | tcp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | tcp |
| GB | 92.123.143.216:443 | player.aniview.com | tcp |
| IE | 3.248.128.118:443 | ce.lijit.com | tcp |
| DK | 37.157.5.84:443 | c1.adform.net | tcp |
| US | 67.202.105.21:443 | ssc-cms.33across.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| IE | 108.128.4.40:443 | ap.lijit.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | tcp |
| US | 15.197.193.217:443 | match.adsrvr.org | tcp |
| JP | 124.146.153.151:443 | tg.socdm.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| IE | 108.128.4.40:443 | ap.lijit.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 15.197.193.217:443 | match.adsrvr.org | tcp |
| JP | 124.146.153.151:443 | tg.socdm.com | tcp |
| US | 216.200.232.253:443 | sync.mathtag.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| DE | 162.55.233.29:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | 118.128.248.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.129.214.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.44.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.5.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.4.128.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.193.197.15.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.153.146.124.in-addr.arpa | udp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| US | 172.240.45.78:443 | sync.aniview.com | tcp |
| DE | 162.55.233.29:443 | sync.richaudience.com | tcp |
| DE | 141.95.98.65:443 | id5-sync.com | tcp |
| US | 45.55.126.71:443 | ads.dxkulture.com | tcp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| US | 34.98.64.218:443 | us-u.openx.net | udp |
| IE | 34.248.152.121:443 | pr-bh.ybp.yahoo.com | tcp |
| FR | 217.182.178.234:443 | rtb-csync.smartadserver.com | tcp |
| NL | 147.75.34.153:443 | prebid.a-mo.net | tcp |
| US | 52.1.95.45:443 | api-2-0.spot.im | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 52.73.22.15:443 | sync.ipredictive.com | tcp |
| US | 169.197.150.8:443 | match.deepintent.com | tcp |
| US | 8.8.8.8:53 | 66.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.34.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.95.1.52.in-addr.arpa | udp |
| US | 52.73.22.15:443 | sync.ipredictive.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 70.42.32.31:443 | b1sync.zemanta.com | tcp |
| US | 54.87.10.112:443 | ssp.disqus.com | tcp |
| IE | 34.252.6.15:443 | match.prod.bidr.io | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| US | 45.55.126.71:443 | ads.dxkulture.com | tcp |
| US | 45.55.126.71:443 | ads.dxkulture.com | tcp |
| GB | 2.18.108.20:443 | hbx.media.net | tcp |
| US | 45.55.126.71:443 | ads.dxkulture.com | tcp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| US | 35.244.174.68:443 | idsync.rlcdn.com | tcp |
| US | 54.204.207.243:443 | sync.srv.stackadapt.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| US | 8.8.8.8:53 | 20.108.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 172.111.38.54:443 | tracker.open-adsyield.com | tcp |
| US | 172.111.38.54:443 | tracker.open-adsyield.com | tcp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| IE | 34.253.170.144:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | 144.170.253.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| US | 204.79.197.200:443 | bing.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 204.79.197.200:443 | bing.com | tcp |
| US | 8.8.8.8:53 | chatgpt.com | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.155.209:443 | chatgpt.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 104.18.94.41:443 | challenges.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 209.155.64.172.in-addr.arpa | udp |
| GB | 95.101.129.218:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | challenges.cloudflare.com | udp |
| US | 104.18.94.41:443 | challenges.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 218.129.101.95.in-addr.arpa | udp |
| US | 104.18.41.158:443 | cdn.oaistatic.com | tcp |
| US | 104.18.41.158:443 | cdn.oaistatic.com | tcp |
| US | 104.18.41.158:443 | cdn.oaistatic.com | tcp |
| US | 104.18.41.158:443 | cdn.oaistatic.com | tcp |
| US | 104.18.41.158:443 | cdn.oaistatic.com | tcp |
| US | 104.18.41.158:443 | cdn.oaistatic.com | tcp |
| US | 104.18.41.158:443 | cdn.oaistatic.com | tcp |
| US | 172.64.155.209:443 | ab.chatgpt.com | tcp |
| US | 104.18.32.47:443 | ab.chatgpt.com | tcp |
| US | 8.8.8.8:53 | 158.41.18.104.in-addr.arpa | udp |
| US | 104.18.41.241:443 | auth.openai.com | tcp |
| US | 104.18.41.241:443 | auth.openai.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| GB | 95.101.129.146:443 | www.bing.com | tcp |
| GB | 95.101.129.218:443 | www.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | tse4.mm.bing.net | udp |
| US | 8.8.8.8:53 | tse3.mm.bing.net | udp |
| US | 8.8.8.8:53 | tse2.mm.bing.net | udp |
| FR | 216.58.214.174:443 | www.youtube.com | tcp |
| FR | 216.58.214.174:443 | www.youtube.com | udp |
| FR | 142.250.179.118:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | 118.179.250.142.in-addr.arpa | udp |
| GB | 184.28.176.96:443 | tcp | |
| GB | 184.28.176.96:443 | tcp | |
| GB | 184.28.176.96:443 | tcp | |
| GB | 184.28.176.96:443 | tcp | |
| GB | 184.28.176.96:443 | tcp | |
| FR | 216.58.214.162:443 | googleads.g.doubleclick.net | tcp |
| GB | 184.28.176.96:443 | tcp | |
| FR | 216.58.214.162:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| FR | 216.58.213.74:443 | jnn-pa.googleapis.com | tcp |
| FR | 142.250.179.97:443 | yt3.ggpht.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| US | 52.123.129.254:443 | dual-s-ring.msedge.net | tcp |
| FR | 216.58.213.74:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 74.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.179.250.142.in-addr.arpa | udp |
| FR | 152.199.21.118:443 | static-ecst.licdn.com | tcp |
| US | 52.182.143.214:443 | browser.pipe.aria.microsoft.com | tcp |
| FR | 142.250.75.238:443 | play.google.com | tcp |
| FR | 142.250.75.238:443 | play.google.com | tcp |
| FR | 142.250.75.238:443 | play.google.com | tcp |
| FR | 142.250.75.238:443 | play.google.com | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| GB | 173.222.211.40:443 | aefd.nelreports.net | udp |
| FR | 142.250.75.238:443 | play.google.com | udp |
| FR | 142.250.178.142:443 | support.google.com | tcp |
| GB | 184.28.176.82:443 | tcp | |
| GB | 184.28.176.82:443 | tcp | |
| GB | 184.28.176.82:443 | tcp | |
| GB | 184.28.176.82:443 | tcp | |
| GB | 184.28.176.82:443 | tcp | |
| US | 152.199.19.161:443 | fp-vs.azureedge.net | tcp |
| US | 150.171.75.254:443 | bx-ring-fallback.msedge.net | tcp |
| GB | 184.28.176.82:443 | tcp | |
| SE | 51.12.13.90:443 | 06580f55f43ce170e18236ef890e3360.azr.footprintdns.com | tcp |
| GB | 95.101.129.235:443 | www.bing.com | tcp |
| GB | 95.101.129.235:443 | www.bing.com | tcp |
| GB | 95.101.129.235:443 | www.bing.com | tcp |
| GB | 95.101.129.235:443 | www.bing.com | tcp |
| GB | 95.101.129.235:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 95.101.129.211:443 | r.bing.com | tcp |
| GB | 95.101.129.211:443 | r.bing.com | tcp |
| GB | 95.101.129.211:443 | r.bing.com | tcp |
| GB | 95.101.129.211:443 | r.bing.com | tcp |
| GB | 95.101.129.211:443 | r.bing.com | tcp |
| GB | 95.101.129.211:443 | r.bing.com | tcp |
| GB | 95.101.129.235:443 | www.bing.com | tcp |
| DE | 3.66.14.62:443 | eu.i.posthog.com | tcp |
| US | 8.8.8.8:53 | 62.14.66.3.in-addr.arpa | udp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 9f081a02d8bbd5d800828ed8c769f5d9 |
| SHA1 | 978d807096b7e7a4962a001b7bba6b2e77ce419a |
| SHA256 | a7645e1b16115e9afec86efa139d35d5fecc6c5c7c59174c9901b4213b1fae0e |
| SHA512 | 7f3045f276f5bd8d3c65a23592419c3b98f1311c214c8e54a4dfe09122a08afb08ab7967b49bd413bc748ce6363658640bc87958d5e0a78974680a8f9beadf44 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 3e681bda746d695b173a54033103efa8 |
| SHA1 | ae07be487e65914bb068174b99660fb8deb11a1d |
| SHA256 | fee5f7377e5ca213c1d8d7827b788723d0dd2538e7ce3f35581fc613fde834c2 |
| SHA512 | 0f4381c769d4ae18ff3ac93fd97e8d879043b8ec825611db27f08bd44c08babc1710672c3f93435a61e40db1ccbf5b74c6363aaaf5f4a7fc95a6a7786d1aced8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f1018498b598dfa7aeb1666ea112c734 |
| SHA1 | 396c4f0690f86da4935759f11012076ef2692fa4 |
| SHA256 | 6379a903fc1c3c4d1ff5f54990a25b6fd5c9e3aff7cb79020167ab4ffe650c12 |
| SHA512 | 9b71b22426dbb0da934e7e4985b97f515b6ae7ae2dc65605ad336492431d1d74eb9cc2cf1929637d712948ac9dfc9200e1eda78a141d8e3e74bdbaabf536d58b |
\??\pipe\LOCAL\crashpad_3768_NLIOEGSTWQIFBJBA
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 040e9e34b9a78bad9916d7db64450cb8 |
| SHA1 | 8dae723b7a9c5760023f640524305ffff78a336c |
| SHA256 | 6e7365982392716ecc5c4b0f39dec5b4956cbfa6df6fbf27c192776e7f716987 |
| SHA512 | 6f93ed07f88373f988b113d40a07eb3b59017e83c818262ced675ba820a5eae6dfb1847dcf6f5ad5514d5d75cbc0ac1570a494fc00fa83b67aaec76ebd45a915 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 22e49f7a43aea015d4c24080dd689744 |
| SHA1 | d0d9880bd3b7d44052f2f726c0c69fc5eb9e6548 |
| SHA256 | 3b91c40d5d27c1a5661cbf7aa90703f4438bbdb7e5b696b8f3b7727b2fe714de |
| SHA512 | 5ed4e3e2c5ea8c822ba08a4e3600def567a3b8599d2ffbf5cf59651f7c8ec7782364ddf8c90c0d8291ab5fb9158bb4168a91d5c8deb7007fe8e729a4b289f42f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | acdf82b0f69f7d4dbf7f98340be85371 |
| SHA1 | 74507c7c5e7f8cf53ac372019eafac1cb2253aa7 |
| SHA256 | 6a351d68fd110f46349a727caf21eef93424c0195a837a827c6807e18d5d7e50 |
| SHA512 | 6c5fb661bcd7c9c8db60b2eebab593d28e2d13a749b4f2ea851d7b2f5ca067b9190695275f72584a2d0fd57af35ab2082cdd457e128ce579d5b53f20063b7371 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58530d.TMP
| MD5 | f57cea0854359915a57b745e64b92c33 |
| SHA1 | 1f7ab7ffd8e23f0d09bb8d423ddaf33daa258a12 |
| SHA256 | ecb3139e9c4d9f93d20f1f3a2ffb7ab64667c3548108eae5582dd01d7df22a25 |
| SHA512 | 99464490c54de60a4226988b5c92be5d912ebd1b0bd89559bc1124d4b6dbe0fe19d635c5f60e672c10584bf22204f4dcddf96a5621379e1b4eb5eb90fe6428c5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | cb717ae24e1c3cb6746c535299c21a26 |
| SHA1 | 48727f921b1ca7e8aa830784d93eb8c8967241c0 |
| SHA256 | 9478fd7c8d84a42bc8dd07e84563125d02b5b0dc6771a52740c67eb1db164d3b |
| SHA512 | d9b62717c3bd689fde26bcc7175f7543c2e0422ad1ce5f23b3eaf2b1932b167910194addff6939cbc5fb6f1665a919bdbc69aa8f138f02a3fe109ed251dfa187 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 75715b56b019658512e553604a90ea04 |
| SHA1 | 4c9501bd298f1d14354cc7dee275c995a2b4bc98 |
| SHA256 | a847e12550802c8c7447fcc9b50653deaa0dd6b821189dcaf0fe6820dc32c4e4 |
| SHA512 | 3252911fde3d730967b55e66e89712f8263ebf0ac47e7e5a39c48196fd5e13afbbfdffc51b8a080e69433dc166bd56974188a8e8448ec7264ffbcc8e4b627a13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 58c61f943a40c440b98d64b47a189563 |
| SHA1 | 25956220c30027e5884c590a4cde4720e8a81ee2 |
| SHA256 | d59a6acf9d49f2d2f0056d9576d45a631c1249d3c232a38806c4abb6309a318e |
| SHA512 | 304f12441462bc898b0a24fda6097e0102c40dc897a32a75e14f31293483e2beabd4843ff3f5f459e978b06309ba54d9140bcea9c868f525e386219b0384109d |
C:\Users\Admin\Downloads\Unconfirmed 242951.crdownload
| MD5 | 7355a16e62b44bae42ef6d2775e0797f |
| SHA1 | f78d71a324f85490f0868a2e8527232dfdfd2ad0 |
| SHA256 | 793d8850b2bc88071892297a2db39d044c8fe8db19918a0530cec893f4d795a0 |
| SHA512 | 98042ab4a2c293a47f108b39d6d2576e3501f8fa2dc9468edba0ee65028c78d2c7472e0c0020eb52f3861e2bd539391ac70002ef9be544d0a8b2c8f5c3d1985a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4defee7e462a22352e6c2136a44b9a2d |
| SHA1 | b0d48be91381047a37cf364008f8e9f73907163e |
| SHA256 | 9bb8ee6524284b4543e4646ec0a6f1d9a20b9d3735c5dfd62c55c112f6bf315d |
| SHA512 | f79da192fe7a0e9f7ee06e611e808903a4a7b14a85276678adc811ad9632e2907cd74fa3f73e95b287348ace90a3094e71df92fda6da66b667a95366ceded59e |
C:\Users\Admin\Downloads\AHHHHHHH.exe:Zone.Identifier
| MD5 | ab2d815a082d1aac70b82a990cc38576 |
| SHA1 | 74633c3bba693ad21f44e5d4f31faa5480371775 |
| SHA256 | ed93bf8e0680123dca93015336fdeeceb9a25202bcc1bd1934b32d4e0ebb4648 |
| SHA512 | 464b522afbcc6fdfe1eeb143408fbdfacba8679930b959edad62819afa9916cf89dc220c84e805b111135f90070e598244aa9c8e2671d10f9601906042f5a723 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 956684bbfdd2e5dd2165445713fcd8a7 |
| SHA1 | 8b29c5d7065326449509932efdec33a97501e6d8 |
| SHA256 | 5586cb49deedc8b907b5f82074ce1043ba8d0f6b526fb4c6e1973c6b1d7f0a35 |
| SHA512 | 8bcd2d13ee6d4123641f062a115c90e289a464ab3824ce1e5d42f1d5048b7b21f515ff3b5f52754d7194bce1788c9cfc56220c5aff0ce08fecb80a3232f9485b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 58a325803f81b40fbd1d31afde3594f2 |
| SHA1 | e1fe61ce699cc1a09afddd079dc8621e5386f5b4 |
| SHA256 | cf2b8744c0df123036941b02f0c3177b331a1aaff1a8b0bf1794bbcbdd4c6d05 |
| SHA512 | 3706b2c04c383e9afe70e9559bd4945d29d9ecfc42a2e2101bb204b989116ab7932b1147e4ae79bb09b5ed16285cf5a39ffab8413a88bf1d1620cadb65a0cde2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 761cdfee7b934a81a96a04ea9200b9b9 |
| SHA1 | da501382558491a18bb504f8a8f19d50b17ad5b4 |
| SHA256 | 5e60fe03fdc078072fc8727b9c11dc4a901ce3899119b39813562064fd365a79 |
| SHA512 | 521ccfa933ca8fb6296beeaf0c259a3ac183c3f7ffdeb3592efc0ba90b738888061bc383a32eefe206315117864d74736230b34b2478f51ac6616376bfc1d976 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 3a4d2a1dfdb99d6ac58e088e2cd56a5f |
| SHA1 | 078775e833a812431a74174e8a3bf6c1c0e788ef |
| SHA256 | 50a501898abaaced7a56a4e8b95d9dc40d3b5c388567e14fa770e8cbe99e4397 |
| SHA512 | cfc36ff621ecf1eb803f80e39ad3ca71fb240b78861fd89c18394c97e4b9633f924fe6df5b07a1a9d5e78318a76402954291ddf3c178123e2a94ed9dad8e2722 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 3fe1b2bff204b11b5611bd6ca1434d5e |
| SHA1 | 6694e8c58f1653a08428ded49915c2e9f103b57a |
| SHA256 | 489d29358a3ceee68b9e3a11ae8cc71767b4a370d7bf6a316682b615152c7013 |
| SHA512 | f4cbcb7d6445f4fa065c72c0a60c244c72d09dd5d51e3f9091521c301dff1644995590a25c216521cb3ba8ed62c40211bb0db5b5be7f70175e89492dccf46714 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 7b5aef4566f2c7db748c62601ca4394c |
| SHA1 | 6d64404c789a8a639a75d0afe06d2af88876a6b9 |
| SHA256 | e3b5ad440467c3929263d9d92aa6e554018329a0ce30d4650902d28ae4a7addf |
| SHA512 | 83303db8814bdfa14b1f911863c6a642bf81dd316579ffea91f90e45e5e1d18e906c38086a322efd2afcd33278daa0b3e68e161ee40497e167078bba1949dcd5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | a3ef6b9e633ad9ec9338795cc3bdfc19 |
| SHA1 | 91c5d259b358d0bbab5e279e21b514a577cfeb2d |
| SHA256 | b4215121676301e101faf85d7bef70c48b34e9c97b6d33747eceb301d87e9f7d |
| SHA512 | 18af3c5a768eb4bc9810d6cf0998333e62966d86d8a6c60c02ddc804406252fb4bb0c0f1ff1092687a4337dd3c5775a44f7ee2bb580557d2dc2aecd0a4e499f3 |
memory/196-756-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-755-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-754-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-760-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-766-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-765-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-764-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-763-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-762-0x00000215FD510000-0x00000215FD511000-memory.dmp
memory/196-761-0x00000215FD510000-0x00000215FD511000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 48bdcb266f69c7e6e311c6f324e3eda1 |
| SHA1 | e5ecbba603db4794747321a1f2bb0399760915bc |
| SHA256 | 4186b96dcecde88db79de1cf7a8ced84b6ab6537574f56930e96c9d22309196b |
| SHA512 | b796815d501c4c3eb3bc23dc8c93dd5b53c1b0326726c5d40a6e18b6dce9057e14b18cd22573335afea1cf78b46fecfe78432a0bd5b3070dfc4aec2aec387bec |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links
| MD5 | dea94aed15ede2ca8a8b35a48633c232 |
| SHA1 | 3da98557ef94d7e6a0cb3ffd25cf8891759cbad3 |
| SHA256 | d294b675a370170f5376eaced4af90a23b6d865d3c5d2a18a1ff8c7f0d9bbb94 |
| SHA512 | 6fd6aadaa08d61b4196a21b51ad7e5812ffbab32fc13424d25f5daa73fa2bcf556b24eef6ea732f559cc5a3d3bef11972bd0ad7113f6c2e993ac8fc5e8c66b6d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 149156627178c3118bad440b08949fab |
| SHA1 | 3c5eec9817f1217d010c4dfa049a24a318256e09 |
| SHA256 | 5dde48aeaaadb0f747afc4aa0788b2ebf7c1bd6eab0366096b7b470eb015377c |
| SHA512 | 30ccc9f03079f8880be6ba97ca2180e76b6e090342f485e7c04a46a5caca9045d131857bad0e24030829c361f848f4280489d893be06c11eb9531be746d6c4fc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log
| MD5 | 1f9bf4e585489efecfa5d547bdfe8f8a |
| SHA1 | 5d8e60815947318239d7cc732578411825484d8e |
| SHA256 | 3ade5ed6d9c2896fbbad10478a6ea84e8adb36bdf8ee0ac34edcaf7eff77f145 |
| SHA512 | be9b6925f0d0cec22f84ee373ae29deba1e828f08e677d7dbb13a22b15e93c86d0484394c7d31e01fc1cccb42ab82c81e13469a4541f3e4cabb6e99a5d21c72f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG
| MD5 | 8e9a243bd1ee67c6a2493440ddc77db1 |
| SHA1 | 1c5992710c7fd8edc5ebc235166dc738116ce7a5 |
| SHA256 | 9d927fad40a107587ba177b1addbc0478b05909eac3f96e649c2517777ef020d |
| SHA512 | 957b2aa8fad16502cd5e05dea44ff0b0fc2628aded22df9a8006e8a06757b4ad7e75753e32739fda80e98d59fd1555dd2818611330038a4583bd12a8acb2a05b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 9249c7185a8333c8d8312fbfae695f8c |
| SHA1 | 36d96a22950cc4528fd4b4517c1d3562c6f003d7 |
| SHA256 | 3aae1a82ac293e31217c5dd429518dd61ba2e6e8d648f6ba447e5541163b392b |
| SHA512 | 1ca18eb07b4b88c2b087c4e3c9b7c73f88f380f19ae0bf2538ec0be022acd05f9fd3ee9a46e56b0893317ed7552333fa1d3281e177deb21d253728791f0986a5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db-wal
| MD5 | 3cb70f6fb5d593f6cab4c100c9c2fd7e |
| SHA1 | 48e439d78549ba81ed14667e4b8e5263e485b457 |
| SHA256 | d4c88861811e66a3c7d8cb89b03515e2e5b41525525f39c5fc10a52ccbdc9da9 |
| SHA512 | 93542ec2bf0a5402ca741e6a49668ab2681da5143779697213adac3aedd0b405e19c20eef5635a179fbb34fc418a46aad0ca24a02ab8290057e79a9d1d8d63e4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Session_13369222575651766
| MD5 | 943ea95dd6118306dec750baf2fc570b |
| SHA1 | 3a935874d636afea080a73b498b48942398604a9 |
| SHA256 | 24ff9174022df95b21b13abb6145242970d1c0b645147ae910b3f776a688bb9d |
| SHA512 | 1bb88c6f77f8436bc660b1ae56081d18155ffe1e1f67838c4d5545ebbf84883bde1a30d4cc7487f98136d0c31379af00009b695b465cfb518db822e9961c3cea |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13369222575759766
| MD5 | fdf79b9a93704a64650358d294de75fc |
| SHA1 | a2404298343ca13c5bc657815e8303008934beb5 |
| SHA256 | 9d780e57f1d5bf5e3b33ea562ecbb39604fa2d8b8be0553bf9464f4e20555eee |
| SHA512 | b0e37598e6726a104018ca9e52d33655a32e3c559f3ee593f276d3a5ea944560016d5844f0d3c12a4b528de4146d528a2915d87f05e3269f6462cc686a9e285d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Login Data
| MD5 | 3cc34b433f292642da37a5839d577d9e |
| SHA1 | 8213e083ad6551edda82d5559b5401d309ff1135 |
| SHA256 | e1164bdf42664d1c9ae3b780931cb2772d7337d774e0296b06706bd6e96c3b7f |
| SHA512 | 275aac611034ec77dadd9bdedd0fcf6fc37955758d4de997d7843ada233fae85f07945df156d3e8e2d5d813f7fe9cdb074f5c397d355ce175123f8813b71e325 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG
| MD5 | 533a2614fcf544c1f36c52f9fc134449 |
| SHA1 | 9d28f71e43f6e8df9cdef229ef50011922feea3e |
| SHA256 | e62da0503964a1923babf8d9d78635d8a1343d72360ca26def82b11872794ae1 |
| SHA512 | 10417f96bc592adec9abd5ee803d1e8adc8866a25721078235ae7f602f637e182dbf25f4f72f597d69c45ef6a468bc98876d9f1c3b031f58c9b27e67684b238f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Media History
| MD5 | 8166489c910fe2968fc1d040976589bd |
| SHA1 | b9d77906dd5d2e64855d629dd747acc3e46a93da |
| SHA256 | 4c956d4ff14f2052fe58b3e28cc0f01ca4a3c921cc8da572f502d60802da6b69 |
| SHA512 | 656aba4156113077709445c37d2588522d729bbe07604154257fcbd0740e8c7eb570068babdbbbed296b9a033cd041c043d5e5178fc8550278d2423960873744 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG
| MD5 | e5d509e551ee1e8f2952e05ca39aca29 |
| SHA1 | ee39c9c21de02e1eab28b7fb2b7e89a3785a83a5 |
| SHA256 | 4bcd6b7784f2a3c9ac7fb0efb18d4897d5e6a9f26f601cc469ce378e20e1e844 |
| SHA512 | 3ff05282686519ee0c56bef0ebf75f20b217e1128c1175a32d08a7cd25f932ee296b84bf941fee8607f36d77b0d4cd6e58fc64116d2d8067d36a3a7e58d098d7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Web Data
| MD5 | a497e08deef8d631647f2299063ff3b1 |
| SHA1 | d20460e0079c1d99625479f631bb22d98566137c |
| SHA256 | 737eec164ae71cdd474ccacde56045ac54eb814119fae60b7e25b856a540ccab |
| SHA512 | 23d321a3cbdf28e8087405865dfb4aa64bf3812b5ea24abd23481a5170edf80a5802b6a1340969858a2c0ee2a2db07b49fb50e309cf87fe891c1e8ae76836c0a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons
| MD5 | f426450c84c5d44a4060b259815dfa51 |
| SHA1 | 6c0163d5e720e9cf311423a8bfb7dd9eec306af9 |
| SHA256 | 00656029009331f001f7f3e3d8e16a844e32e641458a79203b21b57b39b97044 |
| SHA512 | 3ff0d00112c7914b9daca5453ea9ae353059c7549079ceea7f7dfb9d3898f975ace06a2f2242641211331a5c67966556793f2c4e9da7a36d5f7c758cf15b00ce |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History
| MD5 | 42f11eca78d3520c34052a9a2d0047b5 |
| SHA1 | 9160930b21a667e8fb38e70c095d9d7c1d3ce923 |
| SHA256 | 8d35fbed33438976a86486718a1a1f79628c316d5e97be0696a95748eba0445a |
| SHA512 | d7d4818d7799f4d262219bab1fb26b3cc6090d7ee73c3eae8c60b51ab43e5bb608c713c9cf5ad23766bba93adaf74a622a05ac67f6dbb30abe9e06d523c11a7f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | c2eaa60a9fae21b596e8f900283907c4 |
| SHA1 | c9d200fc9d4550ede442d02f451171904cf061fd |
| SHA256 | d44b21f1c26645c62246fba88c1d8275837df14bcbe0bf5f9c63eb36490dbc54 |
| SHA512 | 02b343d7762965e18b697d0c1f9740e22060010d8755cd5eff3581ac738b564b0373d6a563280d913430656072fe08ca856af5bdd241d48842f4b9ad89333892 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log
| MD5 | cbc17bb48b28c8d0752a359e46e926d6 |
| SHA1 | c9b5abde39d0eb13d64225faf38e43c6dcf7f542 |
| SHA256 | 5cb50a22d12ce65995c55f6a490ae995ac850cbf8caac58540f01ce8db40c19b |
| SHA512 | f1cb51a1ca1ab0d19633ef07879e5f58dc1394168c3003bcdbedbc5968a9bd45e53cfc48a35951dbc9b15e62c40f64e5cde8add60784e70d17d5d5acc059e89b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG
| MD5 | 672ad9d71ae917ae43accaa56bdd681c |
| SHA1 | 48f1a8cf2e2a4acea48bdbf7727b401b6362c88c |
| SHA256 | 5906bba7f2f44c164572f85c6d9f7f17f23767e318ea96b8d5c07d7c75bf5545 |
| SHA512 | 288eef38aa95871ed3e346d87bd1ab7a5b44faa73dd456d959f009465ffb9dda68281a2e8ceb4d6d8173fa56dd4e818e93425a00c3e0356066b7a9746bb3fe46 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version
| MD5 | b29bcf9cd0e55f93000b4bb265a9810b |
| SHA1 | e662b8c98bd5eced29495dbe2a8f1930e3f714b8 |
| SHA256 | f53ab2877a33ef4dbde62f23f0cbfb572924a80a3921f47fc080d680107064b4 |
| SHA512 | e15f515e4177d38d6bb83a939a0a8f901ce64dffe45e635063161497d527fbddaf2b1261195fde90b72b4c3e64ac0a0500003faceffcc749471733c9e83eb011 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1a8e806e58a6194d9958ec5bdf37ede2 |
| SHA1 | 69400a94c7d8f95db6f548723b485d59597bdbce |
| SHA256 | 8d30eaac0cb459e8caf1566dc3f42cd75a55a05a660ce12d9a7220c374cf13c3 |
| SHA512 | ba5f0d66fd3ad42c23f66c6ecb4abafc4f748af9f38984c9bccd6ad03c1ee7151e1ebc5f48754d43e97d45c4b0f8c06fa54f612157b060e73e91bf1ae69b7b7b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 17dc981820baa28111d88001c120b390 |
| SHA1 | e3699fea22d8c9fcd68cb3452b790b2ec4e497b4 |
| SHA256 | 046b9f7009d8fc98eb69b1380d7b65d24e356f5d3fe12069eaed23fc5088af24 |
| SHA512 | c2eb2e450c60d7e7b201287799553157a2c4e3b5537550878da498738aa88958ea827dbddb618b8332fc74c7178250d9db2496820c7f97ce3490aca69d47432a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0531cfb5624a4473cbb6d10d1fe35000 |
| SHA1 | 0e36f7e5e0d08fe6fa3541d6123ab6625311d1e1 |
| SHA256 | 65f49ca8e053165420509588fa97491dbe69bf90ce45bdd6dd0e0642d2bde43c |
| SHA512 | 069c0cd1827ef856df9ffa7a66b30a99bf81804ec7655567d2ba7f84da3399b42247dea51d5d0751b0ad1b78215c83fe5f3352b8eb1507d706fe03f5b9dff8c1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | e46caadd1f207fe5093720cc5f18ca1d |
| SHA1 | f1f27dcb3732ad50d47ec67df96a78a68254b4be |
| SHA256 | 2b2697b46a1377af6827e23b43114310690c8d70a20a8f6fdd52228fb499e8fc |
| SHA512 | 253afe8d3ae7f614a31ead8e0c5293f2ad1b37d3439db4bdb2dcfa02f43f9c116726b58a5f5a47b400ece3809e84ff3685549b94d2587ba95021f1ff0afd8fbc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 3bacdc6a0a39b7ad6f8d02a872e233d1 |
| SHA1 | 73398ff859dc2094e4ffd73432133017924b2d06 |
| SHA256 | 17431d5e699c4aed5ec1d460789f7f9a9f7747aa03d4ee3ca92175965cf871cd |
| SHA512 | 6eb8602eaeace81007930b0995e39ec01f8894ee04be46ed6686eb88d8436aa9cedc698a5e7bd675526b6dd147cd6c1fb4e91a4d919fe948bc754d9f9c4e7be9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000022
| MD5 | 8235f98068f731038d8520df4727c625 |
| SHA1 | 6ef1e3ca36d59de490e593ec195b632e8e09565d |
| SHA256 | 98280dcf81e7ed7a29b2d383c12027481bf771aa6358012ee5ffcc8b3af21e38 |
| SHA512 | d75d4b688898ee9c9ee07f7be6e9dafd0154518ac54042270666969dd15dbc3b7c8cf92997c510f42f20a5ad8270d5324dd8f2ef91666a9d6d0450d60bacfd83 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 454d9f3e8e4b0a157d1699a75eac5e22 |
| SHA1 | 75903b66db2390791957fdcc679a32eb151a3d88 |
| SHA256 | 8e98e2b9adab6227fcf0eacdc065ca6fb6ad6e61795e1cb01212aac31207063f |
| SHA512 | 120aca6351566a1b578e4da69012099f35d919bc0c7e074471c38cac98f0b5c59579cb594342c92f4b5c5d4a37a186148dd0fdd5008cf430cca2529eb5644253 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 913ed018d0e3951e80672e17d4f984c7 |
| SHA1 | 2d6c458123ff368c6d12e28aa6cffc46a5d2bb61 |
| SHA256 | 5878b6afb5548aa67f2cee8da46bc841c7f0c5ff9ba3d12e23e5aeac5c46f190 |
| SHA512 | ddda953f449c5c11d4f3508c44ecca06c3da9c819e7de373dc88340d0c2982d049d2e8ca7fc3aabdc4df92a2e926076b6859ee54e91412504887f7e368f70cc8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 196b879a33a7c3b49d64238f532f1765 |
| SHA1 | 78f4787a7f22c9c58e9461b615eebb5a540125a3 |
| SHA256 | ae08841443c7f7b90b9d94788a1ace83cf1660b7dabc1f6dc7694bbeb920775e |
| SHA512 | 9dfb13f50d73cd9d03b4d6963f490f37f667f74af6b31163214f5d1fae57200b923b6d093693f3326d3e9853f8d826ca8aa26dad01daa47574807b3f9ca49c0c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2536fee1fe63c93b0838dc3334f9ac23 |
| SHA1 | 48909da32f4285075c566f8b6ab629eb0cc5381f |
| SHA256 | c8674d3dd70d46770f0ecd63b2b48e8c4190a8df46590b8a4538f57cca821d27 |
| SHA512 | ec7fcdb1b68b1cbfbb4332997d520c82641f98532629df85d6d8f3a708d366a624369c1b1141f9d1b3df56b1d0e1437e8cbc8c3be9e71ab1e8d83b61210a222b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 8a58e083b2ee0d6d7dc9b1cd776c7f51 |
| SHA1 | 7031d53d98b53db7251a14297a8ece49d5ddb83f |
| SHA256 | c86fd87faef77d4654b9a1b23f3b87db5ba6dcff8dd5e8f6a2dbad5f07cf0567 |
| SHA512 | 7c077f91c2d0d508907d67bded2ea10fc25dcfcf93916a8fd1800436e952221390dd15af90cbbeeb1228a61bd4cff2b346bc8052af03b7c42e6aed0ec2f31645 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b4513b7de6f7df3187c2e08f1a592557 |
| SHA1 | 1042b3730a18150b69d769d3b8004224640b042b |
| SHA256 | 41b2c37cfbfa2e84cd65d01870f1922458c520b1ed14d8f26464a041d7bb4612 |
| SHA512 | 9a0f2bf5574fbe8683b9f2158f98e7a617d8af1aaec9e9bfbbec0c5e2ddbd157564f0b1ee3c51baa0f4d4e09de9390420b58b7bb5da2e2c9743bc2b274e4786a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5b811dceece0e17e8118b0f0beb1df31 |
| SHA1 | 3651e6fc08c318b640ea59575123d21db933c05d |
| SHA256 | 86658871b3ed09a35c13237580d8c730ed74a1ed8ce95ef82fcbe06e7c12f118 |
| SHA512 | acc55d2ec5bfc18b3ddccbfce034a4228f789bfd132616eafb8439077181d9bd6d6094a74b020a12c15bfff50d09d5a7e1e3522fe0cc68e358b5337dacd081ed |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b97d9bf2ea19584a021bc3bb4a33b6a4 |
| SHA1 | 6c53bd0f87c17e92c31716dd2ef10020a1f49c26 |
| SHA256 | 719113f5cee7e7e505e2dd437e894bf4579cc7b16994107a86e8a40a295c5c0c |
| SHA512 | 9c0c9f25d95f08bd97e57c40b2520c45f1b7a02c201c77e1e6c8a880f827d0755ae44956427355e991d6c400e6253d189ee9d10e2918110e707a7a1b743894a2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | a307c55a3f5bf6177a84335f5b47d09d |
| SHA1 | c1b805ee2de18d82a568a7dc715fb9ff38323199 |
| SHA256 | 9a1837090ef2324bf31c028ff7dfdc09e0e26fddb0e0afe4c4baf2830d68ec3c |
| SHA512 | 08d70edbf381942d4eb0dcf42018febde929a5f1474d81b9b48a77a52342f150e68ba353f1b90bdef59b9fa7f542fd5c6a4671e412f99cc722eee9c8fce8efa2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 8209e1dbaf1ac69c85d377c429d6e533 |
| SHA1 | f1a6bde8e02098dad4a2257635c43084dd2091a2 |
| SHA256 | be0b60a0633414d81c2623795dcc05d087d1886a88308a29aaf9eef308dbdf4f |
| SHA512 | 03fb3c014340ab0fb8af140725e3276e02a4a1b14178015d5cf9df8855d490cf0360ba08023d4c3fed04c6c8a75981565a57b97116a4d9702c17a35ef0b3a8bf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00009a
| MD5 | bcb4e507765fc2b0734fd40f64dd33c0 |
| SHA1 | 75c19c649e4c3cfec223d9f8d7c20ef15ad6a85d |
| SHA256 | 1011babd91b4a1411f834ab87223b028e8c05298d5249df70adfcf1c413a05f7 |
| SHA512 | 900ff979c7b3b0cdfa620f12c8c92c68707303b377e678f7cdcc4baa2f87bcb311ac27ca227d8715a3c6008a142baf418d5c7e36fdafe289c7a9a1aa0942be63 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5006237b05874529be32495586d0acd9 |
| SHA1 | 58ad7aeea6baea795617d4f0e397ef5fe51d58ee |
| SHA256 | efb84c37f8794400079dbdcbb230adb34244d8326dd8d87fd85012f7afb6a91e |
| SHA512 | 3afd9c8af3041b93d283c14265d73214461d2a5ccd7578f4208bef594cf56f651ec85e13109d501fcd314a1ddabf8ba83a83a5667318cce0331866225548e02e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 67533ea4c50c64f6e99dcdf295c100d6 |
| SHA1 | ff948d379a88020a03182b4cc1a247391f7ae0db |
| SHA256 | bf7b239622cc2ebb7b34b0087db4925be77270d30a0c02f7b525c268bd0f8bf7 |
| SHA512 | 67792e76c04eb29e7d89bc386d4ee37a468ab0ec75d80a296e8756828135cbde5ce8fda367666daec0de41d413a56d20e42699c2f3c99df994eca1dde92a1eeb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 13b2c5642e392e0fce3c7b085a431137 |
| SHA1 | fab40f86660d4f9cc326bcacc9163939dc130595 |
| SHA256 | 62014925309490dcb3eda81cdad0c454ae4685aac12ddbc2f09f09060e897c86 |
| SHA512 | 8c9b89425904e8abf890c0a00f0bc9b4aeae91c4864b16ee5a1f3013a825226e1570c09883378b14188fc58159c22d8fef6754a73cc11e2c27ad5e5b1773e3bf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 23bd3b5754bf153cbbcbb83693462c4a |
| SHA1 | ce38cb15d251274944c043582085dd588e0fff78 |
| SHA256 | 510e16f066f1278e6e7c5ac1e93768e584102556587d2d1ed49ec7560582a986 |
| SHA512 | 2f8ac36f134724378085d8e3c9639bbd3bd7d85b5c04fb63c9a186d894d800f0e5e6064b7efe02dc2602d9a04f57eb03c253d5e9ae9fdeaa2d6a23b53eafadc0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00006f
| MD5 | 8ab35848768f30a7eb81d525d18ce96d |
| SHA1 | 7833667f5d08d58837c0a9d01ea0a15c6b3759e6 |
| SHA256 | 4135303df903224b2d6bc416bac09060665f6b35ae845571c6442326b921f18f |
| SHA512 | 6877caaf873bfab09ddd31dd86aa557ac8e0066fcee7843d68258933c31051a589f3c4943189b22a42795f2d975b66ab8c641187ee6ee4b4e48d552a7cda8487 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 953c017fef08571d31e7dde23fef7391 |
| SHA1 | c12a2f01a243b5d8eb62eb7cebf9b96234ac6db1 |
| SHA256 | 0c0daf3c4734433b6733f4cd0074bfaa78b6e547a11235adfb782c919a9a7ba3 |
| SHA512 | c837c503f748405465e20cbc11334d8cde7700f4ed2da430b204cbf881efe789366e1ecdeffd44332899021d1068bfeb4b41aa4a0751b5bd601bad7ede785cf6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 64a3dce99f964c388b29c93fd81e578c |
| SHA1 | dc433025b1f12b2c9ff891465c0275d847f64599 |
| SHA256 | 93bb0344c5269189351b9d2f95e12126690e790b61c5c57db42bcb2bfc011f5a |
| SHA512 | a190c392be01034b998028952f3c4ae054c13f546d76f8544a0a84376a1a44915e173ef09eed176b0f3b7d34cc372b2514941b329fe85203aa644ea962ab5f00 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 8b15a1882709e68bc1e7c5f0b8f6198b |
| SHA1 | e37b0c18e684a92d99d943a47f6faea0608f77ed |
| SHA256 | dee008b6bb809313f37de900d576d7ce60e0cd36cdc3fbc8af8231512054b6b7 |
| SHA512 | 20fd18a12d64bd608ae1d12ad5e3af5fae572d3620343b708816a2eb62774a0c1b09c9fe57a41247a81b0a7d65a2710e9797b6f00e83d7c5f9868705df1e3115 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000a8
| MD5 | 167477f02da2ddecd77412fb3e802c71 |
| SHA1 | 4736c6e85698e47699963c73cc1b38b3d51307b2 |
| SHA256 | cea7fb90727ee77593d90f74ad0bde2f71ea1a71b7b974853b3a76875928f46f |
| SHA512 | 216ff299606418148c64cf8562689c17e3dcd5b283745be4de1b7799829470a799a05ab1a34f8bad17a6d62fb374d20e1272adc2b8725dbc35d9e1d76a9bc0e1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 1c814efef7361978f239c077eea33526 |
| SHA1 | d5220d6cead2f864d2acbeb2f20211b9a0e40478 |
| SHA256 | 801b5e1a03911ec607b76b298610ec292461086575e60147b16dd00ed03da044 |
| SHA512 | f35d6ac5c2d22bdb68e695ed8c2aa5eb45b0cddc56f3b8f8bddcf9bb5d32503864fc266583bae28bfc23d8e9e1c2af7ed1333a6320848c196b845c17a055d7fe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3d593df56249cae3c6eea4e34f9f931a |
| SHA1 | 6d74c815e330397ff0206dadf0d3d470328a6545 |
| SHA256 | e14cd90d66eec615057a7babcafa813efb4c58f093d5ca2cd6fb2aa453fff116 |
| SHA512 | 44a94d59428381ccda7918b10ae85d79732a7dac8b930a89f94e5f67163236533bd913adf5025b406093a62d6039f3feb37192f021c1b70f7b2971e546f39e1a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5487cbd1cc728d4ca23412f2a464ef93 |
| SHA1 | 403d2154cf624d3157b74c5d401d6fe5ee89cd34 |
| SHA256 | c9f66e71a157454e7fc947a7de98676b0193c993d3cc1330b664f03de9d90fbf |
| SHA512 | c7ddafb948e84f6a95a2e2dd19b4c4c721228acf6243e43c6e510f16dcf72f735d963dfd99ab0d98c3010307a763ba38ee7752ed99714ee0224f62b0fac094dd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | d23ceced99caf19b43cae308eb0b42c4 |
| SHA1 | 94f89469512d1e78a284aa622e362578f3b46c07 |
| SHA256 | 52a6b65863fb1a64b63d0d22a872b4f8bc3ea7f82b0f5353c3d6cb547f23851c |
| SHA512 | 9d580d9e920793b40d4458e8230b09aefad0d5233ee486d889904881c605a1c5c948d32c73a2d9e7213d3928fc19ad22961cc08345fb863a06c9296b1fc3f3cd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | b15e0682ab5f0368510cf629d6c24fa9 |
| SHA1 | 2b2cec59cee07fb6d330bfd02d1e84cf499f2bed |
| SHA256 | 3d870de056ccfe010e23584736f1c32bbde8f7d1444b134509a9fe176650ab4e |
| SHA512 | e66afa9c8dd0edb5231afbfd5dca05bdd08ede410b4b0aff33d02df0b6c0e4ef47d683b0b86998d7a4c604a66938c109eda3433bd981d7cc0349133d7170fd78 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 632531d6a5e6567d0466c631126b7e21 |
| SHA1 | 5f01e2c3348a398c13a41fdac2feec93bcc164ca |
| SHA256 | a5eb72a3439f4dd5c1106c3d819287de3a43f994c374a49f4ac5f3f9497e7674 |
| SHA512 | b3a43bc9e1202c4a148425a14a97832c14ac9e1c0991b1fa97d9e45c3bbe95b7a03b2bf63c4f4313dad46237f30bae25f8c6e9474dfededa5add83140fad5a1f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 5156534bc76cd53ed36f819f501641bc |
| SHA1 | 3068709f682c7fe66fc1d528c3f5a074bdc191f0 |
| SHA256 | a1a8c8798ce8c9f59bfae50beb2454f4b5ea2f1e3847d8951018ad13384a11a1 |
| SHA512 | ad219d39ba99257ba51e4eb5d3d5fea848b999407f6172c8b1d48e8da14ab0460ada88608fa8978d98dc1306300f4b1c0beb1335124125b46fc9241259b8a464 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ac910939aa061f2e317527a3cfefe9f8 |
| SHA1 | 365784d3872c0f39422d3325602a972f88fe65f2 |
| SHA256 | f45befe084e6d42dcebda961d5d320e942973c0476557399b39bb9cc9a184a17 |
| SHA512 | b55accc94379490cfbf60b547d780a1a5926cf1a66ed29c53dc622b690d574e7bf2827a2fa78b39178ef40244fc11a579fb9c53a1d463de5ade0b075365a9877 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | a589a866dc9ba5361855605c03209f9c |
| SHA1 | 85e64045d73db4fc272619128674dabb8fc8597b |
| SHA256 | 7faecc95bec232d304023132dfd3b5f7d180e2aeb738a138171b236f61d86b4a |
| SHA512 | 67c4aba70312e8b03c155c32a65cbf990244815be49ee3ded3a881594c1274318487e66e208d70d7a36b5db8da8e1cc33f80a39452e815ddf7369b71b41a916e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | d94012428a486f6a840e921bfbc0b3c1 |
| SHA1 | 633523a320bd7372772c747ccfc0c764499e6f44 |
| SHA256 | 518e4ac025dc95b90cfcc39658daf6d026cfa25b7557befc95959c5f83672695 |
| SHA512 | b0af791ffab253816b1fbe551f2e122e8383d81e370da69f6dec4ac43d92c66674df03ca112fd88d12073cd3561b990a278859fa7f1d3ab264f101a1a2b11ba4 |