Malware Analysis Report

2024-12-07 01:57

Sample ID 241111-rzhfmazjbz
Target image.webp
SHA256 12f76120ad5a6e7685abaae14eeeb026049a9d4b43fd552506439d37a642cd18
Tags
discovery motw phishing
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

12f76120ad5a6e7685abaae14eeeb026049a9d4b43fd552506439d37a642cd18

Threat Level: Shows suspicious behavior

The file image.webp was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery motw phishing

A potential corporate email address has been identified in the URL: [email protected]

A potential corporate email address has been identified in the URL: web-vitals@3

Mark of the Web detected: This indicates that the page was originally saved or cloned.

Drops file in Windows directory

Browser Information Discovery

Enumerates physical storage devices

Enumerates system info in registry

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of FindShellTrayWindow

Suspicious use of WriteProcessMemory

Suspicious use of AdjustPrivilegeToken

Modifies data under HKEY_USERS

Suspicious behavior: EnumeratesProcesses

Suspicious use of SendNotifyMessage

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-11-11 14:37

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-11-11 14:37

Reported

2024-11-11 14:40

Platform

win11-20241023-en

Max time kernel

149s

Max time network

152s

Command Line

cmd /c C:\Users\Admin\AppData\Local\Temp\image.webp

Signatures

A potential corporate email address has been identified in the URL: web-vitals@3

phishing

A potential corporate email address has been identified in the URL: [email protected]

phishing

Mark of the Web detected: This indicates that the page was originally saved or cloned.

phishing motw
Description Indicator Process Target
N/A https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html N/A N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Enumerates physical storage devices

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133758095047992954" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4304 wrote to memory of 2284 N/A C:\Windows\system32\cmd.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4304 wrote to memory of 2284 N/A C:\Windows\system32\cmd.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2420 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2420 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4956 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4956 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1928 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\cmd.exe

cmd /c C:\Users\Admin\AppData\Local\Temp\image.webp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\image.webp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8461bcc40,0x7ff8461bcc4c,0x7ff8461bcc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1816,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1812 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2068,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=2092 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2156,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=2368 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3100,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3128 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3116,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3288 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4580,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4608 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4724,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4740 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff846463cb8,0x7ff846463cc8,0x7ff846463cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1900 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2280 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2504 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3172 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3200 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3996 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4620 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4516 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5604 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5260 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5160 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5228 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3984 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004D4 0x00000000000004BC

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4612 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5696 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6024 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5900 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6308 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6408 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6484 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6624 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6756 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5644 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7216 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7164 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7416 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7680 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7852 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7344 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7652 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8032 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8356 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8292 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8300 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8536 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8776 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8908 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9028 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9420 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9884 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9892 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9312 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9912 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9340 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9924 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9604 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9940 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9644 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9304 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9800 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7916 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9988 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9972 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8476 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6048 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10552 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10580 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11412 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6276 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10424 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5136 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3380 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1100 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7492 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10084 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4720,i,5666734680445269117,9118530182160445738,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4832 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8116 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8024 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8440 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7256 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8252 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11304 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7256 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,16844229052882091793,12560476149477875066,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8936 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
GB 216.58.201.110:443 clients2.google.com udp
N/A 224.0.0.251:5353 udp
GB 216.58.201.110:443 clients2.google.com tcp
GB 13.87.96.169:443 nav.smartscreen.microsoft.com tcp
GB 13.87.96.169:443 nav.smartscreen.microsoft.com tcp
US 8.8.8.8:53 169.96.87.13.in-addr.arpa udp
GB 92.123.128.138:443 th.bing.com tcp
GB 92.123.128.135:443 th.bing.com tcp
GB 92.123.128.174:443 r.bing.com tcp
GB 92.123.128.174:443 r.bing.com tcp
GB 92.123.128.135:443 th.bing.com tcp
US 204.79.197.200:443 bing.com tcp
NL 20.190.160.22:443 login.microsoftonline.com tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 104.18.23.39:443 progameguides.com tcp
US 104.18.23.39:443 progameguides.com tcp
DE 52.85.32.41:443 c.amazon-adsystem.com tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 104.18.22.39:443 progameguides.com tcp
US 151.101.65.91:443 s.skimresources.com tcp
US 8.8.8.8:53 41.32.85.52.in-addr.arpa udp
US 8.8.8.8:53 56.92.85.52.in-addr.arpa udp
US 8.8.8.8:53 39.22.18.104.in-addr.arpa udp
US 104.18.69.40:443 embeds.beehiiv.com tcp
US 192.0.76.3:443 pixel.wp.com tcp
DE 18.155.145.90:443 htlbid.com tcp
US 192.0.73.2:443 secure.gravatar.com tcp
US 174.138.117.212:443 geniuslinkcdn.com tcp
DE 54.230.183.15:443 static.chartbeat.com tcp
US 104.18.14.215:443 gamurs.group tcp
DE 54.230.206.108:443 launcher.spot.im tcp
DE 52.85.92.29:443 cdn.p-n.io tcp
DE 52.85.92.116:443 sb.scorecardresearch.com tcp
US 104.18.25.111:443 extralocker.com tcp
DE 18.155.153.105:443 cmp.inmobi.com tcp
US 34.120.157.206:443 spc.progameguides.com tcp
US 52.205.202.119:443 open-api.spot.im tcp
US 172.67.202.192:443 geoip.gamurs.workers.dev tcp
US 34.120.157.206:443 spc.progameguides.com udp
GB 2.19.117.93:443 client.px-cloud.net tcp
US 35.190.59.101:443 r.skimresources.com tcp
US 35.190.91.160:443 p.skimresources.com tcp
US 35.190.91.160:443 p.skimresources.com tcp
US 35.201.67.47:443 t.skimresources.com tcp
US 34.107.199.61:443 stk.px-cloud.net tcp
US 8.8.8.8:53 227.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 3.76.0.192.in-addr.arpa udp
US 8.8.8.8:53 90.145.155.18.in-addr.arpa udp
US 8.8.8.8:53 2.73.0.192.in-addr.arpa udp
US 8.8.8.8:53 200.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 215.14.18.104.in-addr.arpa udp
US 35.190.10.96:443 collector-pxebumdlwe.px-cloud.net tcp
US 8.8.8.8:53 212.117.138.174.in-addr.arpa udp
US 34.192.178.163:443 open-api.spot.im tcp
US 3.222.171.9:443 ping.chartbeat.net tcp
US 8.8.8.8:53 116.92.85.52.in-addr.arpa udp
US 8.8.8.8:53 static.adsafeprotected.com udp
US 199.232.215.52:443 publisher-assets.spot.im tcp
GB 18.172.88.111:443 static.adsafeprotected.com tcp
US 35.190.59.101:443 r.skimresources.com udp
US 151.101.194.202:443 mab.chartbeat.com tcp
US 104.26.10.164:443 b.trueanthem.com tcp
US 13.107.246.65:443 www.clarity.ms tcp
DE 54.230.206.103:443 silo48.p7cloud.net tcp
DE 18.155.153.118:80 crt.rootg2.amazontrust.com tcp
GB 18.172.88.111:443 static.adsafeprotected.com tcp
US 18.209.150.81:443 direct-events-collector.spot.im tcp
US 199.232.215.52:443 publisher-assets.spot.im tcp
US 104.17.248.203:443 unpkg.com tcp
US 35.201.67.47:443 t.skimresources.com udp
US 151.101.65.229:443 cdn.jsdelivr.net tcp
US 44.195.244.184:443 k.p-n.io tcp
US 8.8.8.8:53 118.153.155.18.in-addr.arpa udp
US 8.8.8.8:53 226.21.18.104.in-addr.arpa udp
US 8.8.8.8:53 81.150.209.18.in-addr.arpa udp
US 8.8.8.8:53 229.65.101.151.in-addr.arpa udp
US 8.8.8.8:53 203.248.17.104.in-addr.arpa udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
DE 52.222.191.86:443 p.gcprivacy.com tcp
US 35.190.10.96:443 collector-pxebumdlwe.px-cloud.net udp
US 3.5.20.23:443 ams-pageview-public.s3.amazonaws.com tcp
US 104.22.75.216:443 btloader.com tcp
US 151.101.65.91:443 cdn.growthbook.io tcp
US 4.153.129.168:443 b.clarity.ms tcp
DE 18.155.153.80:443 config.aps.amazon-adsystem.com tcp
DE 18.155.155.98:443 aax.amazon-adsystem.com tcp
DE 18.197.18.38:443 api.cmp.inmobi.com tcp
GB 23.223.126.98:443 secure.cdn.fastclick.net tcp
US 104.26.10.164:443 b.trueanthem.com tcp
US 104.18.25.111:443 extralocker.com tcp
US 54.175.230.135:443 p2.gcprivacy.com tcp
US 52.204.221.209:443 rp.liadm.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
DE 18.155.153.51:443 ua.p7cloud.net tcp
DE 52.85.92.20:443 lal.p7cloud.net tcp
DE 54.230.182.141:443 d2tbszkvx1p56e.cloudfront.net tcp
US 130.211.23.194:443 api.btloader.com tcp
US 130.211.23.194:443 api.btloader.com tcp
US 8.8.8.8:53 19.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 135.230.175.54.in-addr.arpa udp
US 8.8.8.8:53 51.153.155.18.in-addr.arpa udp
US 8.8.8.8:53 209.221.204.52.in-addr.arpa udp
US 8.8.8.8:53 20.92.85.52.in-addr.arpa udp
US 8.8.8.8:53 141.182.230.54.in-addr.arpa udp
US 8.8.8.8:53 rumcdn.geoedge.be udp
DE 18.155.145.111:443 rumcdn.geoedge.be tcp
NL 45.133.44.3:443 player.adtelligent.com tcp
NL 45.133.44.3:443 player.adtelligent.com tcp
NL 185.89.210.90:443 ib.adnxs.com tcp
US 54.205.76.68:443 idx.liadm.com tcp
US 151.101.65.229:443 cdn.jsdelivr.net udp
US 104.22.52.173:443 cdn.hadronid.net tcp
US 172.67.23.234:443 a.ad.gt tcp
IE 52.48.168.123:443 id.crwdcntrl.net tcp
NL 79.127.227.46:443 id.a-mx.com tcp
US 172.67.23.234:443 a.ad.gt tcp
NL 79.127.227.46:443 id.a-mx.com tcp
NL 45.133.44.4:443 player.adtelligent.com tcp
US 52.54.184.80:443 pix.spot.im tcp
DE 167.235.37.234:443 sghb.spotim.market tcp
DE 167.235.37.234:443 sghb.spotim.market tcp
US 172.67.4.231:443 c.aaxads.com tcp
DE 52.85.92.52:443 tags.crwdcntrl.net tcp
US 104.22.52.86:443 cdn.id5-sync.com tcp
IE 13.74.129.1:443 c.clarity.ms tcp
US 8.8.8.8:53 4.44.133.45.in-addr.arpa udp
US 8.8.8.8:53 234.37.235.167.in-addr.arpa udp
US 8.8.8.8:53 80.184.54.52.in-addr.arpa udp
US 8.8.8.8:53 231.4.67.172.in-addr.arpa udp
US 8.8.8.8:53 86.52.22.104.in-addr.arpa udp
US 8.8.8.8:53 52.92.85.52.in-addr.arpa udp
US 8.8.8.8:53 1.129.74.13.in-addr.arpa udp
NL 63.215.202.178:443 proc.ad.cpe.dotomi.com tcp
US 13.107.21.237:443 c.bing.com tcp
US 104.22.75.216:443 btloader.com tcp
NL 178.250.1.56:443 bidder.criteo.com tcp
NL 178.250.1.56:443 bidder.criteo.com tcp
NL 185.184.8.90:443 prebid-eu.creativecdn.com tcp
IE 46.51.191.193:443 ap.lijit.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
DE 52.222.191.99:443 hb.yellowblue.io tcp
FR 163.5.194.33:443 prebid.a-mo.net tcp
NL 46.228.174.115:443 targeting.unrulymedia.com tcp
NL 46.228.174.115:443 targeting.unrulymedia.com tcp
DE 18.155.145.63:443 hb.openwebmp.com tcp
GB 216.58.213.1:443 ef65eb11f5edb6e1635ba05564e63016.safeframe.googlesyndication.com tcp
GB 18.172.88.52:443 live.primis.tech tcp
US 8.8.8.8:53 g2.gumgum.com udp
US 8.8.8.8:53 p.ad.gt udp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 token.rubiconproject.com udp
US 8.8.8.8:53 image2.pubmatic.com udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 18.223.54.95:443 amspbs.com tcp
US 18.223.54.95:443 amspbs.com tcp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
US 34.149.50.64:443 s.seedtag.com tcp
DE 37.252.171.52:443 secure.adnxs.com tcp
US 52.34.131.231:443 ids.ad.gt tcp
US 52.34.131.231:443 ids.ad.gt tcp
US 52.34.131.231:443 ids.ad.gt tcp
IE 52.211.85.20:443 ads.yieldmo.com tcp
US 104.22.30.209:443 prebid.smilewanted.com tcp
US 104.22.30.209:443 prebid.smilewanted.com tcp
DE 141.95.33.120:443 lb.eu-1-id5-sync.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 172.67.23.234:443 p.ad.gt tcp
US 104.18.36.155:443 htlb.casalemedia.com tcp
DE 35.157.44.103:443 krk2.kargo.com tcp
US 3.33.220.150:443 match.adsrvr.org tcp
IE 54.171.28.155:443 g2.gumgum.com tcp
IE 54.171.28.155:443 g2.gumgum.com tcp
GB 142.250.179.226:443 cm.g.doubleclick.net tcp
US 165.22.177.2:443 exchange.cootlogix.com tcp
US 165.22.177.2:443 exchange.cootlogix.com tcp
NL 69.173.156.148:443 token.rubiconproject.com tcp
GB 185.64.191.210:443 image2.pubmatic.com tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
US 69.166.1.35:443 sync.go.sonobi.com tcp
IE 3.248.133.173:443 dpm.demdex.net tcp
NL 89.149.192.201:443 sync.smartadserver.com tcp
IE 34.253.47.134:443 ad.360yield.com tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com tcp
US 172.67.23.234:443 p.ad.gt tcp
US 52.34.131.231:443 ids.ad.gt tcp
US 172.67.23.234:443 p.ad.gt tcp
US 67.202.105.22:443 ssc-cms.33across.com tcp
GB 142.250.179.226:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 64.50.149.34.in-addr.arpa udp
US 8.8.8.8:53 209.30.22.104.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 155.36.18.104.in-addr.arpa udp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 210.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 20.85.211.52.in-addr.arpa udp
US 8.8.8.8:53 52.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 2.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 120.33.95.141.in-addr.arpa udp
US 8.8.8.8:53 103.44.157.35.in-addr.arpa udp
US 8.8.8.8:53 150.220.33.3.in-addr.arpa udp
US 8.8.8.8:53 155.28.171.54.in-addr.arpa udp
US 8.8.8.8:53 2.177.22.165.in-addr.arpa udp
US 8.8.8.8:53 95.54.223.18.in-addr.arpa udp
US 8.8.8.8:53 173.133.248.3.in-addr.arpa udp
US 8.8.8.8:53 231.131.34.52.in-addr.arpa udp
US 8.8.8.8:53 201.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 35.1.166.69.in-addr.arpa udp
US 8.8.8.8:53 134.47.253.34.in-addr.arpa udp
US 8.8.8.8:53 33.169.217.172.in-addr.arpa udp
DE 54.230.206.11:443 api.intentiq.com tcp
DE 18.155.153.102:443 sync.intentiq.com tcp
GB 2.23.204.244:443 ads.pubmatic.com tcp
US 35.244.159.8:443 u.openx.net tcp
US 44.206.197.9:443 cs-server-s2s.yellowblue.io tcp
US 35.244.159.8:443 u.openx.net udp
US 8.8.8.8:53 live.primis.tech udp
US 34.1.234.71:443 csync.loopme.me tcp
GB 142.250.180.2:443 pubads.g.doubleclick.net tcp
US 76.223.111.18:443 eb2.3lift.com tcp
GB 87.248.114.11:443 ups.analytics.yahoo.com tcp
DE 91.228.74.244:443 pixel.quantserve.com tcp
US 44.193.122.74:443 mb9eo.publishers.tremorhub.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
GB 2.23.220.28:443 cs.media.net tcp
DE 18.155.153.82:443 sync-gdpr.intentiq.com tcp
GB 142.250.180.2:443 pubads.g.doubleclick.net udp
NL 35.214.136.108:443 x.bidswitch.net tcp
FR 154.54.250.81:443 ads.stickyadstv.com tcp
US 80.77.87.161:443 cs.admanmedia.com tcp
US 34.1.234.71:443 csync.loopme.me tcp
NL 35.214.136.108:443 x.bidswitch.net udp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
US 8.8.8.8:53 244.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 28.220.23.2.in-addr.arpa udp
US 8.8.8.8:53 149.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 74.122.193.44.in-addr.arpa udp
US 8.8.8.8:53 82.153.155.18.in-addr.arpa udp
US 8.8.8.8:53 108.136.214.35.in-addr.arpa udp
US 8.8.8.8:53 81.250.54.154.in-addr.arpa udp
NL 89.149.193.116:443 ssbsync-global.smartadserver.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
DK 37.157.3.20:443 cm.adform.net tcp
US 80.77.87.161:443 cs.admanmedia.com tcp
DE 18.195.234.25:443 match.sharethrough.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
GB 142.250.180.1:443 cdn.ampproject.org tcp
US 162.243.169.53:443 sync.kueezrtb.com tcp
US 3.165.148.94:443 video.primis.tech tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 104.18.41.106:443 sync.ingage.tech tcp
GB 142.250.180.1:443 cdn.ampproject.org udp
GB 2.23.220.28:443 cs.media.net tcp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
GB 142.250.200.10:443 imasdk.googleapis.com tcp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.180.4:443 www.google.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 10.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 4.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 216.58.212.194:443 googleads.g.doubleclick.net tcp
GB 142.250.180.4:443 www.google.com udp
FR 185.235.86.66:443 gem.gbc.criteo.com tcp
FR 185.235.86.31:443 ag.gbc.criteo.com tcp
FR 178.250.7.13:443 dnacdn.net tcp
GB 142.250.200.10:443 jnn-pa.googleapis.com udp
GB 216.58.212.194:443 googleads.g.doubleclick.net udp
US 23.192.21.141:443 eus.rubiconproject.com tcp
IE 54.72.89.140:443 ce.lijit.com tcp
GB 2.19.117.98:443 acdn.adnxs.com tcp
GB 172.217.16.230:443 s0.2mdn.net tcp
GB 142.250.200.34:443 ep1.adtrafficquality.google udp
US 8.8.8.8:53 98.117.19.2.in-addr.arpa udp
US 8.8.8.8:53 230.16.217.172.in-addr.arpa udp
US 198.24.167.211:443 server.cpmstar.com tcp
US 34.120.133.55:443 api.rlcdn.com tcp
US 104.16.187.87:443 cs.seedtag.com tcp
US 192.241.135.251:443 sync.cootlogix.com tcp
US 172.64.149.180:443 cdn.indexww.com tcp
FR 163.5.194.33:443 sync.a-mo.net tcp
IN 142.250.199.195:443 csi.gstatic.com tcp
DE 51.89.9.254:443 onetag-sys.com tcp
IN 142.250.199.195:443 csi.gstatic.com tcp
US 104.19.158.19:443 assets.a-mo.net tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
GB 51.11.108.188:443 x.urs.microsoft.com tcp
IN 142.250.199.195:443 csi.gstatic.com tcp
GB 23.215.239.190:443 secure-assets.rubiconproject.com tcp
GB 2.19.117.6:443 csync.smartadserver.com tcp
DE 162.55.233.28:443 sync.richaudience.com tcp
DE 18.195.234.25:443 match.sharethrough.com tcp
FR 185.255.84.152:443 visitor.omnitagjs.com tcp
US 34.1.234.71:443 csync.loopme.me tcp
US 34.149.50.64:443 s.seedtag.com udp
IE 54.246.188.223:443 match.prod.bidr.io tcp
NL 193.3.178.3:443 ads.us.e-planning.net tcp
US 64.202.112.255:443 b1sync.zemanta.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
US 47.253.61.56:443 gw-iad-bid.ymmobi.com tcp
GB 2.19.117.6:443 csync.smartadserver.com tcp
GB 2.19.117.22:443 ced-ns.sascdn.com tcp
NL 178.250.1.57:443 ssp-sync.criteo.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
DE 51.89.9.254:443 onetag-sys.com udp
US 80.77.87.161:443 cs.admanmedia.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
IE 34.249.50.233:443 ice.360yield.com tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com tcp
DE 52.85.92.44:443 eu-west-1-cs-rtb.openwebmp.com tcp
US 104.18.6.198:443 gum.aidemsrv.com tcp
US 98.82.154.76:443 s.amazon-adsystem.com tcp
US 3.165.148.94:443 video.primis.tech tcp
GB 2.19.117.84:443 player.aniview.com tcp
US 34.1.234.71:443 csync.loopme.me tcp
US 64.202.112.255:443 b1sync.zemanta.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
US 8.2.108.175:443 bc-sync.com tcp
IE 54.155.94.181:443 jadserve.postrelease.com tcp
US 204.62.12.209:443 sync-service.net tcp
US 3.211.75.57:443 sync.srv.stackadapt.com tcp
US 192.132.33.69:443 bttrack.com tcp
US 35.244.174.68:443 id.rlcdn.com tcp
US 64.202.112.255:443 b1sync.zemanta.com tcp
US 8.2.108.175:443 bc-sync.com tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com udp
US 172.240.45.96:443 sync.aniview.com tcp
US 34.1.234.71:443 csync.loopme.me tcp
US 80.77.87.161:443 cs.admanmedia.com tcp
DE 18.155.145.11:443 s.ad.smaato.net tcp
US 34.193.171.116:443 pxl.iqm.com tcp
NL 188.42.34.65:443 ads.betweendigital.com tcp
DE 18.155.145.11:443 s.ad.smaato.net tcp
GB 2.19.169.32:80 x2.i.lencr.org tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 98.82.154.76:443 s.amazon-adsystem.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 34.120.157.206:443 spc.progameguides.com udp
IE 67.220.224.144:443 aax-eu.amazon-adsystem.com tcp
US 18.209.150.81:443 direct-events-collector.spot.im tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 35.190.10.96:443 collector-pxebumdlwe.px-cloud.net udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
BE 66.102.1.154:443 stats.g.doubleclick.net tcp
GB 216.58.204.67:443 www.google.co.uk tcp
DE 141.95.33.120:443 lb.eu-1-id5-sync.com tcp
US 161.35.143.48:443 xenoexecutor.com tcp
US 161.35.143.48:443 xenoexecutor.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
GB 216.58.201.110:443 www.youtube.com tcp
GB 216.58.201.110:443 www.youtube.com udp
GB 216.58.213.1:443 afs.googleusercontent.com tcp
DE 162.19.138.82:443 lb.eu-1-id5-sync.com tcp
DE 162.19.138.82:443 lb.eu-1-id5-sync.com tcp
NL 35.214.190.18:443 csync.loopme.me tcp
NL 35.214.190.18:443 csync.loopme.me tcp
GB 172.165.69.228:443 nav.smartscreen.microsoft.com tcp
GB 142.250.200.34:443 ep1.adtrafficquality.google tcp
GB 142.250.179.225:443 ep2.adtrafficquality.google tcp
GB 142.250.179.225:443 ep2.adtrafficquality.google udp
GB 142.250.200.34:443 ep1.adtrafficquality.google udp
GB 216.58.212.206:443 www.youtube.com tcp
GB 172.217.16.226:443 partner.googleadservices.com tcp
NL 35.214.190.18:443 csync.loopme.me tcp
US 161.35.143.48:443 xenoexecutor.com tcp
GB 172.165.69.228:443 nav.smartscreen.microsoft.com tcp
GB 172.165.69.228:443 nav.smartscreen.microsoft.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 142.250.179.230:443 static.doubleclick.net tcp
GB 142.250.187.225:443 yt3.ggpht.com tcp
GB 172.217.16.238:443 www.youtube.com tcp
GB 172.217.16.238:443 www.youtube.com udp
NL 35.214.190.18:443 csync.loopme.me tcp
NL 35.214.190.18:443 csync.loopme.me tcp
GB 172.217.16.246:443 i.ytimg.com udp
US 192.0.77.48:443 s.w.org tcp
GB 216.58.212.206:443 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com tcp
GB 216.58.201.110:443 www.youtube.com tcp
GB 142.250.187.238:443 www.youtube.com udp
GB 142.250.200.34:443 ep1.adtrafficquality.google udp
US 216.239.32.36:443 region1.google-analytics.com udp
GB 2.19.117.148:443 aefd.nelreports.net tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
GB 216.58.213.1:443 afs.googleusercontent.com udp
US 34.1.232.191:443 csync.loopme.me tcp
US 34.1.232.191:443 csync.loopme.me tcp
US 34.1.232.191:443 csync.loopme.me tcp
US 34.1.232.191:443 csync.loopme.me tcp
US 34.1.232.191:443 csync.loopme.me tcp

Files

\??\pipe\crashpad_2284_TCOTFFZMIBARQNNT

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\df9a8bab-f87d-4d8e-a159-fd3e60c0d66d.tmp

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 0d27de32e518a167644736f5f7d708a5
SHA1 872e15bc6859e7a2a962258e470b505ae3e9bf52
SHA256 ee7fbba1e603c175c43721eb36c668deb50a18fa7bfa94f3fce5cb9f0b7317b2
SHA512 7b222bf4b304e3142d28b1b2d05eb79aff3c747dad2d4c417210a12bf271b312fb99bfdec163c9e3ceaf92eeaebe49e39ca76c7379ee845cc0885b507b2d76d6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 fcf2920086e2ddd8996bbfa385b7af88
SHA1 fce4427666e5eed8b98fd90f6b01585ff05796e1
SHA256 78f6adccda62d40aac70b0e0a194db7cb4e959d1b43e99f2aa2f348c0c59c90a
SHA512 889d7f94cb5541bd5a1da8b09f83952b1d778285353ddba094cb208eabcc53a7c39232c7c76fb72cfe0654f296dac582ea991f6d013becf34ad62e772018b3b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c7f1ede9011fa2c924c6776a6ee5ab40
SHA1 039ae8501b191d7379c15622fab58c8e0250762b
SHA256 e60d6a67e2c97efd631f2ed93cd4fba3db5fb23baeb641057c055b871695c487
SHA512 a61d252d9657da774ccf0c5b12210afb174e6547037a3531209efccb81a6aba9550ab6e7ec874b33a93535c7d35f11113ad6fe6fbdf4042553c9a322f56e8200

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 4d8749b7d8bc13bd0a8bf3e5a8b2828a
SHA1 62d78d03d6dc5c393cb456e7574ec7963690e069
SHA256 bcd42b62879a8d7a15e8133a53c887ddb7c7397a7f86242e56535b3945227ec9
SHA512 78fa6e7824eab39c6aa77ba5f69aa8300117324bef98c36660133df863701216822b8349aae1c62db31fa6e7ae39430c59dbe17de60ba67edbe7271de5d447c2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 474d4f6b94dba1b75ddcea206b6e652b
SHA1 d981333a66fa3fb9eaf453a24e43fb03dcb16514
SHA256 74171a2912c6522e8d26e1c06fea5e542fc8ed877366bba3d97d3ec319e5e664
SHA512 5457188711f12d7a0cb16c22d4e6eaa959fb57bbdd8ddd61575d44f0aeb3531d078b0bd06153145b5d5be262fe404239d166addd9340afac2c1a64622e408ddc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 74e08084e6c8bd6dd191eca0974e5c99
SHA1 0dbafe591a94ab5c088e6f02ad7825ecad6fb826
SHA256 71b34130dfe8773042f8642d33487f22436b813f50cc97a6865b94c9448295c2
SHA512 28963a4f3add4545a45d600606269a6f90ef63bfb9b5f2d4e2236fbac9552afad73ca6ed76a92d55a589d3cb2cd9dc410455d54479fb0a43a9ef256318719311

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9450d7fa3766e5f339d7cc1e0d3af0f6
SHA1 8d7caa5527c9c0685b8705377124c7b1e577c616
SHA256 6686eabed248010503340cea214774724836ff38aa5c23bb0225366ccf4f9160
SHA512 6025801b2f8afbf9c8a994088aed63dd1d18262e982cad4db4cc9fe54371c337185a4f661818561adee0249bcc317b94381480791c4a5cce77398a838be647b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 7bed1eca5620a49f52232fd55246d09a
SHA1 e429d9d401099a1917a6fb31ab2cf65fcee22030
SHA256 49c484f08c5e22ee6bec6d23681b26b0426ee37b54020f823a2908ab7d0d805e
SHA512 afc8f0b5b95d593f863ad32186d1af4ca333710bcfba86416800e79528616e7b15f8813a20c2cfa9d13688c151bf8c85db454a9eb5c956d6e49db84b4b222ee8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 5431d6602455a6db6e087223dd47f600
SHA1 27255756dfecd4e0afe4f1185e7708a3d07dea6e
SHA256 7502d9453168c86631fb40ec90567bf80404615d387afc7ec2beb7a075bcc763
SHA512 868f6dcf32ef80459f3ea122b0d2c79191193b5885c86934a97bfec7e64250e10c23e4d00f34c6c2387a04a15f3f266af96e571bbe37077fb374d6d30f35b829

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 3d8391ca1531b0892026f9d02083005b
SHA1 66c2042838c41129684ced4683517c16a71c691c
SHA256 3571b85ef43fa1f5d04ba17bb394f4f8e39469c768a3cd767d2af86fd39ace99
SHA512 bdeab4bbec4c7f327b7079d908f7003a447a7ca7b7b06609badda632ae102d0dab0e7ca3eaec1cefc52f546c97e9a7796768c6724ed2d1e7ba2f68370336b4c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d600f4282cda0f786a68c219798d5898
SHA1 6055b265e34c21ee10ed091edfad4ccdacb911b7
SHA256 6c8754496701170204da36114ede30e8cba5e05afdd43636bce8243ec3c8f1e0
SHA512 ae2fb7b1a08a613f644b49ee8dbc61c3c2012521e198a58017b0dadc6c63b9fab59d70ce250d2f5b963a0f52ce9f96489c22ca14191d3b805463c02621fe12a1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 2514636f44b70891c7259d418ccbc67e
SHA1 3af111a609c82d4300431263e9ba8bba713bf111
SHA256 74569587be2d532b8857404fd982642a711b0b44ee4fef331a0e02270b6cd1ce
SHA512 4ae99958864d1da289e1b2c0b2e8d316c918c3361f81787051d75aa282c10be810f9d3694d159e8ac8bc6ea033d7c285a9c61826cd07e24d7de294dcde90e7ce

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 7075815e5f7bdca35747e4ae44dbf1ea
SHA1 bc9744e8ac29c28728a8a46352bc2c4386f9cc95
SHA256 87d3dd3b3dd6f0fd1d47b2d37108d581a0df97223624cacc626d6bff3973ae5e
SHA512 cefb1db074c0b5878f796894eb691d299abf8556a7f0df5257418beb40fc46360c05a5836fc39542900242ff06a97f6ec394a6c84461ed3a986ca3195f56c8dd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 206702161f94c5cd39fadd03f4014d98
SHA1 bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA256 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA512 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bcf309d613db0d32c2735961b9438c96
SHA1 1f3030d96e969f3291537a2cc5b5d712fdddf737
SHA256 8f9d12461fd4dd4b024ada260d494bf79eff76067a9976054e8c86969a06de8a
SHA512 7438c9d8b278cb532b754f94907f45d20c576d03b9ee03e0ff7c426ccb0515cee77223a040aa48dc4245c22ed51420f210fc1cd252e6537a5664a6ef5ac434a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 17434d865c51435c27177112279ad6f1
SHA1 d273c3124e70d2c8cf1e8ede760325fa840defd3
SHA256 f324e87386ba3550447c8a717e42cc3f701d0452112418b1078c319caf6b4c88
SHA512 353b32508c869063969bb26a6bf2051208c937a09547408773b76c5935e62146ce9338d9b6299737bd0b40783996e17918ecb6256fbd0208188811d116c882cb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 fbb2f4506fcc6b40aec9b151802430f7
SHA1 45e5232dcd667349423a0adc45427a168b1b1a98
SHA256 6d2dd16b7851868ae33183a457daef8ec25ddf92ea37e203e064360cc2af3f4f
SHA512 05169f4c6819bf9b6f5bcbc0b93685578902716fb41d588fcd1bf2e052778ffb6cb0967093acf5a33aa08f143c0743074746da86d5aa399d2ac548a2d17279d8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 e98782e80f5f6fa18a1ee26f164a965c
SHA1 779993e7a5f6bf8fb7ee8291adfbe3e4c2957eb8
SHA256 eccef263d0eec81b5a215a2c9c36f86d3b60b17e15172309d56d9c669d23d249
SHA512 fd36392f291eefb927f12a6c0164c2ee19b4a1593238e34f1ca3bc886b2dc623cf73f61988bb7788f48082631e66292fdcf5837668dbf7541fcbea8bfa163882

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8167d08fd5f22dbd522ff251d766ec2d
SHA1 583fcf460dacb5460fb470e2ab915b801a5bf9de
SHA256 3f9122b2901eadb987f72e51773ec2723bca2302563c029760d3e1855478606d
SHA512 539d8237651b22e493a082a36e473b093ce7a6364b3cb54f8a9538d1e3cb62641d4d03b666b245ae3083e35c5f82dedffa18151a71f149cffd472e8e1cacfb4e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 3ec2d93e04f343d9d8d62957d02d6b4a
SHA1 03de8f5dddbf55107f127ee814c25c8acf46807d
SHA256 9541b24b1704143671866218fc4633af1a67a5867a6e5ddab22536615b4a05fd
SHA512 37e7787022b673e6cb31d161032380289b612bfcc87fe2220fe5aa8c64d91c376917d2006c0e2de229102c5c6268790d33da94e52cae5589f476cceec56e9b45

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 5c2ba088921adcb46797d7f071be9926
SHA1 7964a4ba2f7efcf7d258c3b4e6b73bfa7877b3bf
SHA256 12c66951fbe52bc3225b301c03a9d10650fb68bb28ed98512ece0ef404e34d32
SHA512 f844a9e980c0e0e205b2255cc2f20b86f821fd55d21693fcb97e004f983ef48bb7b419219f5652d686eac40a498b60a8ac37841a7fdbb2f2b337c0952359c86e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5920dc.TMP

MD5 a82dfcb7d62e15f51276683ceb8b043e
SHA1 00f7bce935c84c077987a2b70b7b5675842dd217
SHA256 05fb8c4c4bc2c63f673dc6938747f00d50c93663a6cbccc111b3812b0f4ce2b6
SHA512 f230d99130346b933fa72b923d674e6883999f9b021e9a515d63f078a191650c8045443b966a91b0d5c9d3d9cf76405069e3437b1ee8f621375f403455b421f7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\d05d97b8-fc3b-439e-8007-202c7c5ec4cc.tmp

MD5 ada47cc33a2f5fad79b3389c8272beb0
SHA1 6f2995889886739ee82d5b3b4922602f8edc5a64
SHA256 feae27fc3878edb468f3269366adcc5a4c36a4b0e2703a71547bd003fae24329
SHA512 95770876660fdddef67c55d7cf17eade0ba5001edd5eff3409809862fe86c0f7b722002a3d1676df9fd191db6354545631492cef506aaad934cf098ca41c86c0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 da050824891d50db2d7e4b9fca8da430
SHA1 8b89d1f5df6f40ada1312c4566a8351b46328462
SHA256 1691cb2ed3cf1ea1afe911dcc25d95b1d51c923c95c5c6363915003970d73028
SHA512 6968e0a49565f56c6808b4bd7b1d668d2caec55345dba04fa1aeb5c55568d79822d7db0cba7da9ca0f7ea98015df80e4ebeea14df2e5628375c6c0c8cacb83fd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 127fafc70481cef601f960e9614b0789
SHA1 cae601c98d95dbb54756f9885586c29c9ba8a6ac
SHA256 38e7875e5b352d4b9d974879ee5e13e34f6cd7143fec7ca3610993e01534d6d7
SHA512 e61d899c0a9bfa664764fc1b2051860fbc4f49daccaf93cfdae51c1f8f84c2ca5dce0771e48a4baff7f519818efd75c78d4112656f05bbeb78d7e8b8cb267d64

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000068

MD5 4d8b471a2271ac4e3b5d25b5683964d0
SHA1 67b52c3bfabc09bc4f99d259de43213dfebbb5c8
SHA256 d0947470db9c332a7e6abf959a45cbdaa82e6e032e325c512cc9a3cd32dbae65
SHA512 d734faac61756e2fc07821704a9ebc5c5a0e7a7dec601b3c8ac4ad6b1cec59cd6446f38e4df41f9c51cf5a45bc7c6241801fa945023bec1a735c0bf450a0c0f1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1ae5a5fcd2c3690f4c693d0c55ec714c
SHA1 7d8f3ba4e2185be35e8e7bf9e11081a969daf3fc
SHA256 3dc9e6165b37e786be4219c353acffb8b2bc7cff70213e1523d1a40efc7f141c
SHA512 b2dbd85d9ca45ddd25618891d7a48c77a1003ba80cff63c7ad3f5e9b7ffecc9e14c69bc8f11226b3f333d1222a83d1ca8e27c88269d9caeb4839a2552a1160b6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 384bf3ab50ca2e66eec18426ac3715f3
SHA1 5e6bd4d7356631a7c3d4e7cded15ab0fd5e79148
SHA256 4f48649055f614beade7e97313b9dd6580446a90e0d8d106012d2e4d6a49f587
SHA512 bbd808f7ab99dec4f185ba7ca2323781fe8a335853ce83f27e4dc1d4aaf8153155048d8c6e489632f2b2791e609148fb130d2ee1ca8c76a52ac7d94dbec3e38f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 4255a9b1bf144ab5c01f1f8843d78d0b
SHA1 1e68d235ecf193c4db093d85c78f4eed9e687b69
SHA256 88503cd18ac1a89f2abb7160f0a014c295e52cc0027fb6ec8b3378f73e0f818b
SHA512 a7ee6a5115ce299d05ab70e86b6b27ac54fd4b0b42ca33c074142c40ab7c6518598777d92ee35c9cb59b5b0d2068b0c5c9deb02dbd947af5ea8fae15117625f5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000064

MD5 d847cd930731b88e21ea65cfa18825a7
SHA1 a0ffe2add88127b893a32a80a89703b0266881c8
SHA256 254c61dd4fbb68e19d6af1e5a34da2f3789cd37c2ebbc91af6e5eed0bf155bc1
SHA512 77081c3e219ef5cb95235f4710cf776389eb034d0e3524bff7e410b3d07039f867becdad4382752b671614e5a36a2315fa7cf4efc40eeff01e9a2b1343c57f18

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

MD5 b5ad5caaaee00cb8cf445427975ae66c
SHA1 dcde6527290a326e048f9c3a85280d3fa71e1e22
SHA256 b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8
SHA512 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

MD5 d222b77a61527f2c177b0869e7babc24
SHA1 3f23acb984307a4aeba41ebbb70439c97ad1f268
SHA256 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747
SHA512 d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000072

MD5 7820868733f40be1532c203ddef29dac
SHA1 b05284788e05da2048eafe2d32ae82d72cc7bf20
SHA256 697fe36c8e350ba203e98a5b319be12ac8c3c4b1b0c7b0659d32b0d8210f5c12
SHA512 34ea94632c42798d74da4bae84839889bb071a6545e20e6732523f1b1f8357a9db9b5002c897307bcbcfcdacaab3a7939f069d8b8c8ab2d04c5bc39ffdcb795c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000089

MD5 120487dc73cba74ba507e43d627cf23d
SHA1 bb7e16f235da60fcf9c8cc2530049886d6f7f871
SHA256 3d7cfe80f6f4abe9aa76cbe82829991a5dd670b5adfce249fa0faa022597f7bb
SHA512 677495412adce43a8e5dd20b4b1a9254a93ebe7608ff27e62aa17f8f0048e2c53ffa041cccb08320ff814174dbbdb0a8193bdca512c65551d69688f85f205a32

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f1094c25ec107f3d_0

MD5 66ccab3860bfe4f02a6f4bd3f897dfe8
SHA1 fca4840e098f7d5935c6856a89bdc0c98d2762ff
SHA256 c89c602d7449477869789b49d79eee12f8544477163c711b055b2a4c1fd2de54
SHA512 88cb9eed1ed89e8b44932f443c486857829ab2a9f1660c233669c3d3401e396938b26ddcea909def1cb04779da178fc0379f803850bddd266e7cafe1610c2e03

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 7dd72ce3dfc80a81454fe337ded0693f
SHA1 49579801a810ace92795a947a7e3a9d783a18228
SHA256 ecd122ae33659e177e285918974c30fac7692a41f681dad91c074d3d22898296
SHA512 b5192c85a040faf03a728cad9e8f8fe81889ee14d4cdeb1506249dd579c59c32e3b4c4caf568f7ad2ad6f698a354a6d51b682c8de3086c4846949cb5f9f5be7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6fdfbbb10398f1ca041c4fdcec233829
SHA1 3c73216bb39a35e19cba0ebf7e0e8240a16beedf
SHA256 bd4a18affcb8d4256a7bb199624266bed768343fb1ccb0c46028646f89a3c456
SHA512 3cb448b16c7921a37b10df75c3aa6bd3cc30ccda4af623f96d10185388af7cf865e1d74081697859194491d4f3539be5376b48bf718dfc9f1f47ca0924575bbb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 742aec8dc39f80b2fd3be48b4e786120
SHA1 5d01fda679fa764a212b4030b4555b24e6796486
SHA256 36934ff2fbde40570941147bb754a06a271562bc2fbd45ad4dfabd59d5674d54
SHA512 2fec244e0afbe3388c07a3ca86c156346b336eff3c1f05766d56e5c991014a16d01d99f3186d3ae0efc409550fe59d5fa8deac5daf3bfd4ed99424a9a59fe178

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 16ae5d7129a46c099f3234f3cd9ffde6
SHA1 1617742842995fae93fe5de836af1c4f8a801f21
SHA256 613b260899eb3c66d6007adbcc1f82b16069c34ea89f36aa1e76e0310eeeef13
SHA512 ea661907a3ba67b321b3973a8b180ae825dae3289a4dc74c64be6b89c3c83e157a4a85108822b87630da53cf3253091bb2490e6ad3c78766b5c5a955b5520a99

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a23e489110bd09945b07b1ea70be0b49
SHA1 cc992c244a18c5ff842e7218a83a3850ff895ba3
SHA256 a550d83f7d749c1c53c15aeef7293a3870411436571b2ec6c904969e9eacd37e
SHA512 f82f644580f336957491a5b95f968341b1813f7a35cfb0bd40226e70cbbc7e1e8a7db6224066589142787d4854f43a2c0b4008d99881ba1da18cd1549c04bd2a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 13ef6dd8e405ead3afdb011f2210dbc2
SHA1 cca0d7541c072c0f750039fb806b8a4209967035
SHA256 70a8f31b4790587870ac83b4f705964e3dbaa98eea153095a30a9b9ef5e0d1ca
SHA512 9ce769ee36ac59dcc4a857fb20746beabbd0201c526e04333307ebb9d852d4165f7cd72cdd7240649808eab7d8b5c13667fb6419c1015879284ab8aac2edd767