Malware Analysis Report

2025-04-13 12:24

Sample ID 250102-mwm5gsylbw
Target pepe.jpg
SHA256 463a64d183f90599991de74c1b48330ad796fcd7aa733ac1a9be131eaa80618c
Tags
discordrat discovery persistence phishing rat rootkit stealer
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

463a64d183f90599991de74c1b48330ad796fcd7aa733ac1a9be131eaa80618c

Threat Level: Known bad

The file pepe.jpg was found to be: Known bad.

Malicious Activity Summary

discordrat discovery persistence phishing rat rootkit stealer

Discord RAT

Discordrat family

Downloads MZ/PE file

Executes dropped EXE

A potential corporate email address has been identified in the URL: currency-file@1

Loads dropped DLL

Legitimate hosting services abused for malware hosting/C2

Drops file in System32 directory

System Location Discovery: System Language Discovery

Browser Information Discovery

Enumerates physical storage devices

Suspicious behavior: GetForegroundWindowSpam

Checks processor information in registry

Suspicious use of SetWindowsHookEx

Checks SCSI registry key(s)

Enumerates system info in registry

NTFS ADS

Suspicious use of WriteProcessMemory

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of FindShellTrayWindow

Opens file in notepad (likely ransom note)

Suspicious behavior: EnumeratesProcesses

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

Modifies registry class

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2025-01-02 10:49

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-01-02 10:49

Reported

2025-01-02 11:04

Platform

win10v2004-20241007-en

Max time kernel

935s

Max time network

933s

Command Line

cmd /c C:\Users\Admin\AppData\Local\Temp\pepe.jpg

Signatures

Discord RAT

stealer rootkit rat persistence discordrat

Discordrat family

discordrat

Downloads MZ/PE file

A potential corporate email address has been identified in the URL: currency-file@1

phishing

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\aimmyrobloxV123.exe N/A
N/A N/A C:\Users\Admin\Downloads\aimmyrobloxV123.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A camo.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\eventvwr.msc C:\Windows\system32\mmc.exe N/A

Browser Information Discovery

discovery

Enumerates physical storage devices

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\release\builder.exe N/A

Checks SCSI registry key(s)

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\.md C:\Windows\system32\OpenWith.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\md_auto_file\shell\edit\command C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0000000001000000ffffffff C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202020202 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 0100000000000000ffffffff C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\Mode = "4" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupView = "0" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\IconSize = "16" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell\SniffedFolderType = "Generic" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202020202 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\NodeSlot = "3" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\NodeSlot = "4" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616257" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1092616257" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByDirection = "4294967295" C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 294982.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 16974.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Opens file in notepad (likely ransom note)

ransomware
Description Indicator Process Target
N/A N/A C:\Windows\system32\NOTEPAD.EXE N/A
N/A N/A C:\Windows\system32\NOTEPAD.EXE N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\mmc.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeDebugPrivilege N/A C:\Users\Admin\Downloads\aimmyrobloxV123.exe N/A
Token: SeDebugPrivilege N/A C:\Users\Admin\Downloads\aimmyrobloxV123.exe N/A
Token: SeSecurityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: SeSecurityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A
Token: 33 N/A C:\Windows\system32\mmc.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\mmc.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Windows\system32\mmc.exe N/A
N/A N/A C:\Windows\system32\mmc.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
N/A N/A C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
N/A N/A C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
N/A N/A C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
N/A N/A C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
N/A N/A C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 840 wrote to memory of 2892 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 2892 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 2988 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 2988 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 840 wrote to memory of 4992 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Windows\system32\cmd.exe

cmd /c C:\Users\Admin\AppData\Local\Temp\pepe.jpg

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd450c46f8,0x7ffd450c4708,0x7ffd450c4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2120 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2192 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2892 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3372 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4148 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4680 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5288 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5288 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2268 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5376 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4804 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4960 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5736 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4824 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5668 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4864 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4740 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5692 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3448 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5592 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5740 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6024 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6076 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=1720 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1824 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6052 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6404 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4600 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6576 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6216 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4896 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6140 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\Downloads\aimmyrobloxV123.exe

"C:\Users\Admin\Downloads\aimmyrobloxV123.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5000 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3584 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6304 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6592 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2112,11706725861847176475,17010752322382583595,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3620 /prefetch:2

C:\Users\Admin\Downloads\aimmyrobloxV123.exe

"C:\Users\Admin\Downloads\aimmyrobloxV123.exe"

C:\Windows\system32\eventvwr.exe

"C:\Windows\system32\eventvwr.exe"

C:\Windows\system32\mmc.exe

"C:\Windows\system32\mmc.exe" "C:\Windows\system32\eventvwr.msc"

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /0

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --default-search-provider=? --out-pipe-name=MSEdgeDefaulta3aac935h0b54h41dch9806hf25aed99498f

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffd450c46f8,0x7ffd450c4708,0x7ffd450c4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2176,430058168885678997,1877444142249308303,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2196 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2176,430058168885678997,1877444142249308303,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2260 /prefetch:3

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Desktop\aimmyrobloxV123.txt

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd450c46f8,0x7ffd450c4708,0x7ffd450c4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2144 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2868 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3356 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5020 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4388 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3484 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3484 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4104 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4540 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5500 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5260 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5292 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5556 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5648 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4080 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6024 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6284 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5364 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x510 0x500

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6272 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5332 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5776 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3436 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5984 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7200 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6564 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7236 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5732 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7400 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5892 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7144 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6088 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7164 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6648 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6908 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6024 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5392 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5408 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7100 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7128 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1860 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6328 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7156 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6112 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5728 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6612 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5204 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1620 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5056 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7716 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3960 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6976 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5664 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7260 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6000 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7424 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5616 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7208 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4380 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6688 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6844 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6492 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2656 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4080 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7160 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6340 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7340 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5172 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7516 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4508 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6324 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7064 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7380 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7384 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6408 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5500 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3352 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1340 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6080 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5808 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7584 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6548 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7204 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7488 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8032 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=8020 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7172 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6504 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7804 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6508 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5800 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5040 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5372 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7708 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1744 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7960 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2200 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3940 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2652 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7384 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7220 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2120,2598234752657356000,6880424693006901912,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7600 /prefetch:8

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Downloads\PasswordStealer.dll"

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\PasswordStealer.txt

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd450c46f8,0x7ffd450c4708,0x7ffd450c4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2060 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2372 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2976 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3376 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3392 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2748 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3764 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4584 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3544 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5612 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5612 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3996 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2288 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5188 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3484 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5192 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1984 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5032 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3592 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2044,9581100079491097477,4266763367856554194,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6028 /prefetch:8

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\Discord-RAT-2.0-master (1)\Discord-RAT-2.0-master\README.md

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\Discord-RAT-2.0-master (1)\Discord-RAT-2.0-master\README.md

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd450c46f8,0x7ffd450c4708,0x7ffd450c4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2152 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2220 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2820 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3420 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3440 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4600 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5336 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5336 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=4192 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5600 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5428 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2140,9013582142350824114,18237370924883577837,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3432 /prefetch:8

C:\Users\Admin\Downloads\release\builder.exe

"C:\Users\Admin\Downloads\release\builder.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd450c46f8,0x7ffd450c4708,0x7ffd450c4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2132 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2704 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3420 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3440 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5000 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3268 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3528 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3444 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5460 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5592 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5668 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5668 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5048 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4360 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,9867778629325408058,6305849102124101808,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5132 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 13.86.106.20.in-addr.arpa udp
US 8.8.8.8:53 73.31.126.40.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
GB 88.221.135.1:443 www.bing.com tcp
GB 88.221.135.1:443 www.bing.com tcp
US 8.8.8.8:53 1.135.221.88.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 58.55.71.13.in-addr.arpa udp
US 8.8.8.8:53 r.bing.com udp
US 8.8.8.8:53 th.bing.com udp
GB 88.221.135.51:443 th.bing.com tcp
GB 95.101.143.203:443 r.bing.com tcp
GB 95.101.143.203:443 r.bing.com tcp
GB 88.221.135.51:443 th.bing.com tcp
US 8.8.8.8:53 203.143.101.95.in-addr.arpa udp
US 8.8.8.8:53 51.135.221.88.in-addr.arpa udp
US 8.8.8.8:53 login.microsoftonline.com udp
NL 40.126.32.68:443 login.microsoftonline.com tcp
US 8.8.8.8:53 68.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 76.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 237.21.107.13.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 241.150.49.20.in-addr.arpa udp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 21.49.80.91.in-addr.arpa udp
US 8.8.8.8:53 github.githubassets.com udp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.133:443 avatars.githubusercontent.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 user-images.githubusercontent.com udp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 8.8.8.8:53 154.110.199.185.in-addr.arpa udp
US 8.8.8.8:53 133.110.199.185.in-addr.arpa udp
US 8.8.8.8:53 collector.github.com udp
US 185.199.110.154:443 github.githubassets.com tcp
US 8.8.8.8:53 api.github.com udp
US 140.82.113.22:443 collector.github.com tcp
US 140.82.113.22:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 22.113.82.140.in-addr.arpa udp
US 8.8.8.8:53 200.163.202.172.in-addr.arpa udp
US 8.8.8.8:53 241.42.69.40.in-addr.arpa udp
US 8.8.8.8:53 85.49.80.91.in-addr.arpa udp
US 8.8.8.8:53 camo.githubusercontent.com udp
US 8.8.8.8:53 134.130.81.91.in-addr.arpa udp
US 8.8.8.8:53 private-user-images.githubusercontent.com udp
US 8.8.8.8:53 aefd.nelreports.net udp
GB 2.18.190.212:443 aefd.nelreports.net tcp
US 8.8.8.8:53 tria.ge udp
US 172.64.147.112:443 tria.ge tcp
US 172.64.147.112:443 tria.ge tcp
US 8.8.8.8:53 112.147.64.172.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 185.199.110.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 gateway.discord.gg udp
US 162.159.135.234:443 gateway.discord.gg tcp
US 8.8.8.8:53 234.135.159.162.in-addr.arpa udp
US 162.159.135.234:443 gateway.discord.gg tcp
US 8.8.8.8:53 aefd.nelreports.net udp
GB 2.18.190.203:443 aefd.nelreports.net udp
US 8.8.8.8:53 203.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 cxcs.microsoft.net udp
GB 23.62.195.195:443 cxcs.microsoft.net tcp
GB 2.18.27.82:443 www.bing.com tcp
US 8.8.8.8:53 195.195.62.23.in-addr.arpa udp
US 8.8.8.8:53 82.27.18.2.in-addr.arpa udp
US 8.8.8.8:53 224.162.46.104.in-addr.arpa udp
GB 95.101.143.201:443 www.bing.com tcp
GB 95.101.143.201:443 www.bing.com tcp
GB 95.101.143.201:443 www.bing.com udp
US 8.8.8.8:53 201.143.101.95.in-addr.arpa udp
US 8.8.8.8:53 r.bing.com udp
US 8.8.8.8:53 th.bing.com udp
GB 88.221.135.1:443 r.bing.com tcp
GB 88.221.135.1:443 r.bing.com tcp
GB 95.101.143.177:443 th.bing.com tcp
GB 95.101.143.177:443 th.bing.com tcp
GB 88.221.135.1:443 r.bing.com udp
US 8.8.8.8:53 177.143.101.95.in-addr.arpa udp
US 8.8.8.8:53 fpt.microsoft.com udp
GB 88.221.135.1:443 r.bing.com udp
US 52.167.30.171:443 fpt.microsoft.com tcp
GB 95.101.143.177:443 th.bing.com udp
US 8.8.8.8:53 fpt2.microsoft.com udp
US 8.8.8.8:53 171.30.167.52.in-addr.arpa udp
US 8.8.8.8:53 www.base64decode.org udp
FR 51.83.2.171:443 www.base64decode.org tcp
FR 51.83.2.171:443 www.base64decode.org tcp
US 8.8.8.8:53 jconnor.org udp
US 8.8.8.8:53 cdn.base64decode.org udp
US 104.21.77.25:443 cdn.base64decode.org tcp
US 104.21.77.25:443 cdn.base64decode.org tcp
US 104.21.77.25:443 cdn.base64decode.org tcp
FR 51.83.2.171:443 jconnor.org tcp
US 8.8.8.8:53 cmp.inmobi.com udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 region1.analytics.google.com udp
FR 51.83.2.171:443 jconnor.org tcp
US 104.21.77.25:443 cdn.base64decode.org udp
US 8.8.8.8:53 www.google.co.uk udp
FR 216.58.214.67:443 www.google.co.uk tcp
BE 74.125.133.154:443 stats.g.doubleclick.net tcp
US 216.239.34.36:443 region1.analytics.google.com tcp
US 8.8.8.8:53 cdn.fuseplatform.net udp
US 104.17.159.237:443 cdn.fuseplatform.net tcp
US 8.8.8.8:53 171.2.83.51.in-addr.arpa udp
US 8.8.8.8:53 168.201.250.142.in-addr.arpa udp
US 8.8.8.8:53 25.77.21.104.in-addr.arpa udp
US 8.8.8.8:53 67.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 36.34.239.216.in-addr.arpa udp
US 8.8.8.8:53 237.159.17.104.in-addr.arpa udp
US 8.8.8.8:53 154.133.125.74.in-addr.arpa udp
US 104.17.159.237:443 cdn.fuseplatform.net tcp
NL 18.239.36.97:443 cmp.inmobi.com tcp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
FR 216.58.213.66:443 securepubads.g.doubleclick.net tcp
NL 18.239.70.135:443 c.amazon-adsystem.com tcp
US 8.8.8.8:53 crt.rootg2.amazontrust.com udp
US 8.8.8.8:53 cdn.jsdelivr.net udp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
NL 18.239.83.27:80 crt.rootg2.amazontrust.com tcp
FR 216.58.213.66:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 api.cmp.inmobi.com udp
DE 3.127.93.12:443 api.cmp.inmobi.com tcp
DE 3.127.93.12:443 api.cmp.inmobi.com tcp
US 8.8.8.8:53 btloader.com udp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 172.67.41.60:443 btloader.com tcp
NL 18.238.243.82:443 config.aps.amazon-adsystem.com tcp
US 172.67.38.106:443 cdn.id5-sync.com tcp
US 8.8.8.8:53 ad-delivery.net udp
US 8.8.8.8:53 bt.dns-finder.com udp
US 104.26.2.70:443 ad-delivery.net tcp
US 104.26.2.70:443 ad-delivery.net tcp
US 104.21.25.186:443 bt.dns-finder.com tcp
US 8.8.8.8:53 97.36.239.18.in-addr.arpa udp
US 8.8.8.8:53 66.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 229.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 135.70.239.18.in-addr.arpa udp
US 8.8.8.8:53 27.83.239.18.in-addr.arpa udp
US 8.8.8.8:53 133.2.101.151.in-addr.arpa udp
US 8.8.8.8:53 83.39.65.18.in-addr.arpa udp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 12.93.127.3.in-addr.arpa udp
US 8.8.8.8:53 60.41.67.172.in-addr.arpa udp
US 8.8.8.8:53 106.38.67.172.in-addr.arpa udp
US 8.8.8.8:53 82.243.238.18.in-addr.arpa udp
US 8.8.8.8:53 70.2.26.104.in-addr.arpa udp
US 8.8.8.8:53 186.25.21.104.in-addr.arpa udp
US 8.8.8.8:53 166.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 api.btloader.com udp
US 130.211.23.194:443 api.btloader.com tcp
US 130.211.23.194:443 api.btloader.com tcp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 mp.4dex.io udp
US 8.8.8.8:53 ads.servenobid.com udp
US 8.8.8.8:53 a.teads.tv udp
US 8.8.8.8:53 tlx.3lift.com udp
US 8.8.8.8:53 bidder.criteo.com udp
US 8.8.8.8:53 prebid.media.net udp
US 8.8.8.8:53 exchange.cootlogix.com udp
US 8.8.8.8:53 rt.marphezis.com udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 prg-apac.smartadserver.com udp
US 8.8.8.8:53 prg8.smartadserver.com udp
US 8.8.8.8:53 prebid.a-mo.net udp
US 8.8.8.8:53 i.connectad.io udp
US 8.8.8.8:53 rtb.openx.net udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 ssc.33across.com udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 apex.go.sonobi.com udp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
US 8.8.8.8:53 tags.crwdcntrl.net udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
DE 37.252.171.21:443 ib.adnxs.com tcp
DE 3.78.168.176:443 tlx.3lift.com tcp
US 34.120.63.153:443 prebid.media.net tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
GB 95.100.245.39:443 a.teads.tv tcp
US 172.64.153.78:443 mp.4dex.io tcp
NL 143.244.197.139:443 ads.servenobid.com tcp
DE 51.75.86.98:443 onetag-sys.com tcp
US 35.186.253.211:443 rtb.openx.net tcp
US 104.18.27.193:443 htlb.casalemedia.com tcp
NL 188.166.203.175:443 rt.marphezis.com tcp
FR 163.5.194.33:443 prebid.a-mo.net tcp
US 69.166.1.64:443 apex.go.sonobi.com tcp
US 104.22.55.206:443 i.connectad.io tcp
US 89.187.176.168:443 ssc.33across.com tcp
US 89.187.176.168:443 ssc.33across.com tcp
US 89.187.176.168:443 ssc.33across.com tcp
US 89.187.176.168:443 ssc.33across.com tcp
US 89.187.176.168:443 ssc.33across.com tcp
NL 178.250.1.56:443 bidder.criteo.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 81.17.55.160:443 prg-apac.smartadserver.com tcp
NL 81.17.55.160:443 prg-apac.smartadserver.com tcp
NL 18.239.18.118:443 tags.crwdcntrl.net tcp
FR 5.196.111.65:443 prg8.smartadserver.com tcp
FR 5.196.111.65:443 prg8.smartadserver.com tcp
FR 5.196.111.65:443 prg8.smartadserver.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 18.239.70.176:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
IE 52.50.14.219:443 bcp.crwdcntrl.net tcp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
IE 67.220.228.203:443 aax-eu.amazon-adsystem.com tcp
US 8.8.8.8:53 002dbad16b2703941bba4b3fab8af987.safeframe.googlesyndication.com udp
US 8.8.8.8:53 ep1.adtrafficquality.google udp
FR 216.58.214.65:443 002dbad16b2703941bba4b3fab8af987.safeframe.googlesyndication.com tcp
FR 216.58.213.66:443 ep1.adtrafficquality.google tcp
US 8.8.8.8:53 39.245.100.95.in-addr.arpa udp
US 8.8.8.8:53 78.153.64.172.in-addr.arpa udp
US 8.8.8.8:53 193.27.18.104.in-addr.arpa udp
US 8.8.8.8:53 211.253.186.35.in-addr.arpa udp
US 8.8.8.8:53 21.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 139.197.244.143.in-addr.arpa udp
US 8.8.8.8:53 206.55.22.104.in-addr.arpa udp
US 8.8.8.8:53 176.168.78.3.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 175.203.166.188.in-addr.arpa udp
US 8.8.8.8:53 33.194.5.163.in-addr.arpa udp
US 8.8.8.8:53 98.86.75.51.in-addr.arpa udp
US 8.8.8.8:53 56.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 153.63.120.34.in-addr.arpa udp
US 8.8.8.8:53 65.111.196.5.in-addr.arpa udp
US 8.8.8.8:53 118.18.239.18.in-addr.arpa udp
US 8.8.8.8:53 139.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 176.70.239.18.in-addr.arpa udp
US 8.8.8.8:53 133.254.89.159.in-addr.arpa udp
US 8.8.8.8:53 168.176.187.89.in-addr.arpa udp
US 8.8.8.8:53 64.1.166.69.in-addr.arpa udp
US 8.8.8.8:53 219.14.50.52.in-addr.arpa udp
US 8.8.8.8:53 203.228.220.67.in-addr.arpa udp
US 8.8.8.8:53 ep2.adtrafficquality.google udp
FR 142.250.178.129:443 ep2.adtrafficquality.google tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 www.google.com udp
FR 172.217.20.162:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 cdn.ampproject.org udp
FR 216.58.214.161:443 tpc.googlesyndication.com tcp
FR 216.58.214.161:443 tpc.googlesyndication.com tcp
FR 216.58.214.161:443 tpc.googlesyndication.com tcp
US 151.101.1.229:443 cdn.jsdelivr.net udp
FR 142.250.178.129:443 ep2.adtrafficquality.google udp
FR 172.217.20.164:443 www.google.com tcp
FR 216.58.214.161:443 tpc.googlesyndication.com tcp
FR 216.58.214.161:443 tpc.googlesyndication.com tcp
FR 216.58.214.161:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 s0.2mdn.net udp
FR 142.250.201.166:443 s0.2mdn.net tcp
FR 142.250.179.97:443 cdn.ampproject.org tcp
FR 142.250.179.97:443 cdn.ampproject.org tcp
FR 142.250.179.97:443 cdn.ampproject.org tcp
FR 142.250.179.97:443 cdn.ampproject.org tcp
FR 142.250.179.97:443 cdn.ampproject.org tcp
US 8.8.8.8:53 65.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 129.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 161.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 66.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 164.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 162.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 video-outstream.rubiconproject.com udp
GB 184.26.189.73:443 video-outstream.rubiconproject.com tcp
FR 216.58.214.161:443 tpc.googlesyndication.com udp
FR 216.58.214.161:443 tpc.googlesyndication.com udp
FR 142.250.201.166:443 s0.2mdn.net udp
FR 172.217.20.162:443 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 csi.gstatic.com udp
US 8.8.8.8:53 beacon-nf.rubiconproject.com udp
FR 172.217.20.164:443 www.google.com udp
US 8.8.8.8:53 bid.g.doubleclick.net udp
US 216.239.32.3:443 csi.gstatic.com tcp
US 216.239.32.3:443 csi.gstatic.com tcp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
NL 69.173.156.136:443 beacon-nf.rubiconproject.com tcp
US 216.239.32.3:443 csi.gstatic.com udp
US 8.8.8.8:53 gcdn.2mdn.net udp
FR 142.250.201.174:443 gcdn.2mdn.net tcp
US 8.8.8.8:53 cdn.jwplayer.com udp
NL 18.65.39.128:443 cdn.jwplayer.com tcp
US 8.8.8.8:53 www.googletagservices.com udp
FR 142.250.75.226:443 www.googletagservices.com tcp
US 8.8.8.8:53 static.criteo.net udp
US 8.8.8.8:53 r4---sn-aigzrnse.c.2mdn.net udp
NL 178.250.1.3:443 static.criteo.net tcp
GB 74.125.168.201:443 r4---sn-aigzrnse.c.2mdn.net tcp
US 8.8.8.8:53 ssl.p.jwpcdn.com udp
US 151.101.130.114:443 ssl.p.jwpcdn.com tcp
US 151.101.130.114:443 ssl.p.jwpcdn.com tcp
US 151.101.130.114:443 ssl.p.jwpcdn.com tcp
US 8.8.8.8:53 195.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 166.201.250.142.in-addr.arpa udp
US 8.8.8.8:53 97.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 73.189.26.184.in-addr.arpa udp
US 8.8.8.8:53 3.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 136.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 174.201.250.142.in-addr.arpa udp
US 8.8.8.8:53 128.39.65.18.in-addr.arpa udp
US 8.8.8.8:53 226.75.250.142.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 201.168.125.74.in-addr.arpa udp
US 8.8.8.8:53 entitlements.jwplayer.com udp
NL 18.239.94.95:443 entitlements.jwplayer.com tcp
US 8.8.8.8:53 servedby.flashtalking.com udp
GB 95.100.245.165:443 servedby.flashtalking.com tcp
US 8.8.8.8:53 gum.criteo.com udp
US 8.8.8.8:53 ade.googlesyndication.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 ajs-assets.ftstatic.com udp
FR 216.58.214.162:443 ade.googlesyndication.com tcp
FR 216.58.214.162:443 ade.googlesyndication.com tcp
NL 18.239.36.57:443 ajs-assets.ftstatic.com tcp
US 8.8.8.8:53 dnacdn.net udp
US 8.8.8.8:53 114.130.101.151.in-addr.arpa udp
US 8.8.8.8:53 95.94.239.18.in-addr.arpa udp
US 8.8.8.8:53 165.245.100.95.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 162.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 57.36.239.18.in-addr.arpa udp
FR 178.250.7.13:443 dnacdn.net tcp
US 8.8.8.8:53 agen-assets.ftstatic.com udp
NL 65.9.86.30:443 agen-assets.ftstatic.com tcp
US 8.8.8.8:53 js.ad-score.com udp
US 8.8.8.8:53 d9.flashtalking.com udp
US 8.8.8.8:53 cdn.flashtalking.com udp
NL 18.239.83.92:443 js.ad-score.com tcp
NL 13.227.219.56:443 cdn.flashtalking.com tcp
NL 13.227.219.56:443 cdn.flashtalking.com tcp
NL 13.227.219.56:443 cdn.flashtalking.com tcp
IE 52.51.189.176:443 d9.flashtalking.com tcp
US 216.239.34.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 13.7.250.178.in-addr.arpa udp
US 8.8.8.8:53 30.86.9.65.in-addr.arpa udp
US 8.8.8.8:53 92.83.239.18.in-addr.arpa udp
US 8.8.8.8:53 176.189.51.52.in-addr.arpa udp
US 8.8.8.8:53 56.219.227.13.in-addr.arpa udp
US 130.211.23.194:443 api.btloader.com udp
US 35.186.253.211:443 rtb.openx.net udp
US 104.22.55.206:443 i.connectad.io udp
DE 51.75.86.98:443 onetag-sys.com udp
US 34.120.63.153:443 prebid.media.net udp
US 69.166.1.64:443 apex.go.sonobi.com tcp
US 104.18.27.193:443 htlb.casalemedia.com udp
US 8.8.8.8:53 3194e58a58befcb2ecdca6a388de1fb8.safeframe.googlesyndication.com udp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
US 8.8.8.8:53 cdn.confiant-integrations.net udp
US 172.64.144.166:443 cdn.confiant-integrations.net tcp
US 172.64.144.166:443 cdn.confiant-integrations.net udp
US 8.8.8.8:53 fw.adsafeprotected.com udp
IE 176.34.72.203:443 fw.adsafeprotected.com tcp
US 8.8.8.8:53 hilton.demdex.net udp
US 8.8.8.8:53 203.72.34.176.in-addr.arpa udp
US 8.8.8.8:53 166.144.64.172.in-addr.arpa udp
IE 52.211.121.244:443 hilton.demdex.net tcp
US 8.8.8.8:53 ib.3lift.com udp
US 8.8.8.8:53 eb2.3lift.com udp
US 8.8.8.8:53 protected-by.clarium.io udp
US 13.248.245.213:443 eb2.3lift.com tcp
NL 18.238.243.89:443 ib.3lift.com tcp
IE 34.242.147.151:443 protected-by.clarium.io tcp
US 8.8.8.8:53 static.adsafeprotected.com udp
NL 18.238.243.89:443 ib.3lift.com udp
NL 18.239.50.76:443 static.adsafeprotected.com tcp
US 8.8.8.8:53 dt.adsafeprotected.com udp
US 3.232.142.168:443 dt.adsafeprotected.com tcp
US 3.232.142.168:443 dt.adsafeprotected.com tcp
US 3.232.142.168:443 dt.adsafeprotected.com tcp
US 8.8.8.8:53 img.3lift.com udp
NL 18.239.94.56:443 img.3lift.com tcp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
US 8.8.8.8:53 s.yimg.com udp
US 8.8.8.8:53 244.121.211.52.in-addr.arpa udp
US 8.8.8.8:53 213.245.248.13.in-addr.arpa udp
US 8.8.8.8:53 89.243.238.18.in-addr.arpa udp
US 8.8.8.8:53 151.147.242.34.in-addr.arpa udp
US 8.8.8.8:53 76.50.239.18.in-addr.arpa udp
US 8.8.8.8:53 168.142.232.3.in-addr.arpa udp
US 8.8.8.8:53 56.94.239.18.in-addr.arpa udp
GB 87.248.114.11:443 s.yimg.com tcp
US 8.8.8.8:53 pixel.adsafeprotected.com udp
US 8.8.8.8:53 nrb.ybp.yahoo.com udp
US 8.8.8.8:53 edgecast-vod.yimg.com udp
IE 52.214.250.15:443 pixel.adsafeprotected.com tcp
IE 52.209.41.65:443 nrb.ybp.yahoo.com tcp
IE 52.209.41.65:443 nrb.ybp.yahoo.com tcp
FR 152.195.132.116:443 edgecast-vod.yimg.com tcp
US 8.8.8.8:53 pn.ybp.yahoo.com udp
US 8.8.8.8:53 unified.adsafeprotected.com udp
IE 34.255.239.110:443 pn.ybp.yahoo.com tcp
IE 34.255.239.110:443 pn.ybp.yahoo.com tcp
IE 34.240.196.206:443 unified.adsafeprotected.com tcp
IE 34.240.196.206:443 unified.adsafeprotected.com tcp
US 8.8.8.8:53 id5-sync.com udp
DE 162.19.138.119:443 id5-sync.com tcp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 11.114.248.87.in-addr.arpa udp
US 8.8.8.8:53 170.201.250.142.in-addr.arpa udp
US 8.8.8.8:53 163.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 116.132.195.152.in-addr.arpa udp
US 8.8.8.8:53 15.250.214.52.in-addr.arpa udp
US 8.8.8.8:53 65.41.209.52.in-addr.arpa udp
US 8.8.8.8:53 110.239.255.34.in-addr.arpa udp
US 8.8.8.8:53 206.196.240.34.in-addr.arpa udp
US 8.8.8.8:53 119.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 118.138.19.162.in-addr.arpa udp
FR 216.58.214.162:443 ade.googlesyndication.com udp
US 8.8.8.8:53 ag.gbc.criteo.com udp
US 8.8.8.8:53 gem.gbc.criteo.com udp
FR 185.235.86.57:443 gem.gbc.criteo.com tcp
NL 185.235.87.109:443 ag.gbc.criteo.com tcp
US 8.8.8.8:53 109.87.235.185.in-addr.arpa udp
US 8.8.8.8:53 57.86.235.185.in-addr.arpa udp
FR 51.83.2.171:443 jconnor.org tcp
NL 18.239.36.97:443 ajs-assets.ftstatic.com tcp
US 104.21.77.25:443 cdn.base64decode.org udp
NL 18.239.70.135:443 c.amazon-adsystem.com tcp
NL 18.238.243.82:443 config.aps.amazon-adsystem.com tcp
US 172.67.38.106:443 cdn.id5-sync.com tcp
US 104.21.25.186:443 bt.dns-finder.com udp
US 8.8.8.8:53 csm.nl3.eu.criteo.net udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
US 8.8.8.8:53 25.1.250.178.in-addr.arpa udp
FR 5.196.111.65:443 prg8.smartadserver.com tcp
NL 81.17.55.160:443 prg-apac.smartadserver.com tcp
DE 37.252.171.21:443 ib.adnxs.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
US 89.187.176.168:443 ssc.33across.com tcp
NL 178.250.1.56:443 bidder.criteo.com tcp
US 69.166.1.64:443 apex.go.sonobi.com tcp
US 8.8.8.8:53 cdc84e76c83595928a479a0fe646366f.safeframe.googlesyndication.com udp
US 151.101.1.229:443 cdn.jsdelivr.net udp
FR 216.58.214.161:443 tpc.googlesyndication.com udp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
US 8.8.8.8:53 lyr.pubmatic.com udp
US 8.8.8.8:53 cdn.lijit.com udp
US 8.8.8.8:53 pxdrop.lijit.com udp
US 8.8.8.8:53 c.4dex.io udp
US 8.8.8.8:53 ced-ns.sascdn.com udp
US 8.8.8.8:53 imp-ew1-secondary.lijit.com udp
IE 34.248.74.5:443 imp-ew1-secondary.lijit.com tcp
US 35.241.34.106:443 c.4dex.io tcp
GB 2.18.190.196:443 ced-ns.sascdn.com tcp
GB 92.123.26.160:443 pxdrop.lijit.com tcp
GB 185.64.191.207:443 lyr.pubmatic.com tcp
NL 18.239.83.123:443 cdn.lijit.com tcp
US 8.8.8.8:53 apps.sascdn.com udp
US 8.8.8.8:53 euw1.smartadserver.com udp
GB 2.18.190.201:443 apps.sascdn.com tcp
US 8.8.8.8:53 106.34.241.35.in-addr.arpa udp
US 8.8.8.8:53 160.26.123.92.in-addr.arpa udp
US 8.8.8.8:53 196.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 207.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 5.74.248.34.in-addr.arpa udp
US 8.8.8.8:53 123.83.239.18.in-addr.arpa udp
FR 142.250.75.226:443 www.googletagservices.com udp
US 8.8.8.8:53 d.illuma-tech.com udp
IE 99.80.238.160:443 d.illuma-tech.com tcp
US 8.8.8.8:53 201.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 160.238.80.99.in-addr.arpa udp
US 8.8.8.8:53 ads.pubmatic.com udp
GB 184.26.56.245:443 ads.pubmatic.com tcp
US 8.8.8.8:53 st.pubmatic.com udp
NL 185.64.189.221:443 st.pubmatic.com tcp
US 8.8.8.8:53 245.56.26.184.in-addr.arpa udp
US 8.8.8.8:53 221.189.64.185.in-addr.arpa udp
US 8.8.8.8:53 aqfer.lijit.com udp
US 8.8.8.8:53 sync.sharethis.com udp
US 8.8.8.8:53 spl.zeotap.com udp
GB 92.123.26.160:443 aqfer.lijit.com tcp
US 104.22.51.98:443 spl.zeotap.com tcp
IE 54.171.121.203:443 sync.sharethis.com tcp
US 8.8.8.8:53 ce.lijit.com udp
IE 52.16.89.78:443 ce.lijit.com tcp
US 8.8.8.8:53 ps.eyeota.net udp
DE 3.121.27.153:443 ps.eyeota.net tcp
US 8.8.8.8:53 98.51.22.104.in-addr.arpa udp
US 8.8.8.8:53 203.121.171.54.in-addr.arpa udp
US 8.8.8.8:53 78.89.16.52.in-addr.arpa udp
US 8.8.8.8:53 153.27.121.3.in-addr.arpa udp
NL 185.235.87.109:443 ag.gbc.criteo.com tcp
FR 185.235.86.57:443 gem.gbc.criteo.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
DE 37.252.171.21:443 ib.adnxs.com tcp
US 89.187.176.168:443 ssc.33across.com tcp
FR 5.196.111.65:443 prg8.smartadserver.com tcp
NL 178.250.1.56:443 bidder.criteo.com tcp
US 69.166.1.64:443 apex.go.sonobi.com tcp
NL 81.17.55.160:443 euw1.smartadserver.com tcp
US 35.241.34.106:443 c.4dex.io udp
US 8.8.8.8:53 imp-ew1-primary.lijit.com udp
IE 54.229.130.35:443 imp-ew1-primary.lijit.com tcp
US 8.8.8.8:53 35.130.229.54.in-addr.arpa udp
FR 51.83.2.171:443 jconnor.org tcp
US 216.239.32.3:443 csi.gstatic.com udp
BE 74.125.71.157:443 bid.g.doubleclick.net udp
US 8.8.8.8:53 157.71.125.74.in-addr.arpa udp
FR 142.250.201.174:443 gcdn.2mdn.net udp
GB 74.125.168.201:443 r4---sn-aigzrnse.c.2mdn.net udp
DE 3.121.27.153:443 ps.eyeota.net tcp
US 89.187.176.168:443 ssc.33across.com tcp
US 69.166.1.64:443 apex.go.sonobi.com tcp
US 8.8.8.8:53 rumcdn.geoedge.be udp
US 8.8.8.8:53 pixel.yabidos.com udp
US 8.8.8.8:53 lim2.connectad.io udp
US 104.16.93.102:443 pixel.yabidos.com tcp
NL 18.238.243.106:443 rumcdn.geoedge.be tcp
IE 34.242.147.151:443 protected-by.clarium.io tcp
US 8.8.8.8:53 102.93.16.104.in-addr.arpa udp
US 8.8.8.8:53 106.243.238.18.in-addr.arpa udp
US 8.8.8.8:53 cdn.connectad.io udp
US 8.8.8.8:53 gw.geoedge.be udp
US 8.8.8.8:53 sync-eu.connectad.io udp
NL 18.239.36.33:443 gw.geoedge.be tcp
US 8.8.8.8:53 33.36.239.18.in-addr.arpa udp
US 8.8.8.8:53 cmp.inmobi.com udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 104.21.77.25:443 cdn.base64decode.org udp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 216.239.34.36:443 region1.analytics.google.com udp
FR 216.58.214.67:443 www.google.co.uk udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
US 89.187.176.168:443 ssc.33across.com tcp
US 8.8.8.8:53 tlx.3lift.com udp
US 69.166.1.64:443 apex.go.sonobi.com tcp
US 8.8.8.8:53 exchange.cootlogix.com udp
DE 3.124.64.248:443 tlx.3lift.com tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
US 159.89.254.133:443 exchange.cootlogix.com tcp
US 130.211.23.194:443 api.btloader.com udp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
US 8.8.8.8:53 248.64.124.3.in-addr.arpa udp
US 8.8.8.8:53 bdae7d003427d7dabdc897d122ed49e8.safeframe.googlesyndication.com udp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
FR 142.250.178.129:443 ep2.adtrafficquality.google udp
FR 216.58.214.161:443 tpc.googlesyndication.com udp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
US 8.8.8.8:53 fw.adsafeprotected.com udp
IE 52.49.218.12:443 fw.adsafeprotected.com tcp
US 8.8.8.8:53 hilton.demdex.net udp
IE 52.211.33.202:443 hilton.demdex.net tcp
DE 3.124.64.248:443 tlx.3lift.com tcp
US 8.8.8.8:53 dt.adsafeprotected.com udp
US 23.21.127.254:443 dt.adsafeprotected.com tcp
US 23.21.127.254:443 dt.adsafeprotected.com tcp
US 23.21.127.254:443 dt.adsafeprotected.com tcp
US 8.8.8.8:53 pixel.adsafeprotected.com udp
US 8.8.8.8:53 12.218.49.52.in-addr.arpa udp
US 8.8.8.8:53 202.33.211.52.in-addr.arpa udp
US 8.8.8.8:53 254.127.21.23.in-addr.arpa udp
IE 99.80.166.36:443 pixel.adsafeprotected.com tcp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
US 8.8.8.8:53 36.166.80.99.in-addr.arpa udp
NL 185.235.87.109:443 ag.gbc.criteo.com tcp
FR 185.235.86.57:443 gem.gbc.criteo.com tcp
FR 51.83.2.171:443 jconnor.org tcp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
DE 37.252.171.21:443 ib.adnxs.com tcp
NL 178.250.1.56:443 bidder.criteo.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
FR 5.196.111.65:443 prg8.smartadserver.com tcp
NL 81.17.55.160:443 euw1.smartadserver.com tcp
US 89.187.176.168:443 ssc.33across.com tcp
US 69.166.1.64:443 apex.go.sonobi.com tcp
US 8.8.8.8:53 2fd407fead624d4b551d620c85aef722.safeframe.googlesyndication.com udp
NL 185.235.87.109:443 ag.gbc.criteo.com tcp
FR 185.235.86.57:443 gem.gbc.criteo.com tcp
US 95.100.195.134:443 www.bing.com udp
US 8.8.8.8:53 134.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 r.bing.com udp
US 95.100.195.158:443 r.bing.com udp
US 95.100.195.146:443 r.bing.com udp
US 95.100.195.146:443 r.bing.com udp
US 95.100.195.158:443 r.bing.com udp
US 8.8.8.8:53 146.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 158.195.100.95.in-addr.arpa udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
US 8.8.8.8:53 exe.urih.com udp
US 52.22.2.222:443 exe.urih.com tcp
US 52.22.2.222:443 exe.urih.com tcp
US 8.8.8.8:53 urih.com udp
US 52.22.2.222:443 urih.com tcp
US 8.8.8.8:53 levelity.com udp
US 52.22.2.222:443 levelity.com tcp
FR 142.250.179.104:443 ssl.google-analytics.com tcp
FR 142.250.179.104:443 ssl.google-analytics.com udp
US 8.8.8.8:53 104.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 222.2.22.52.in-addr.arpa udp
US 52.22.2.222:443 levelity.com tcp
US 8.8.8.8:53 ip.urih.com udp
US 52.22.2.222:443 ip.urih.com tcp
US 52.22.2.222:443 ip.urih.com tcp
FR 142.250.179.104:443 ssl.google-analytics.com udp
FR 216.58.214.161:443 tpc.googlesyndication.com udp
FR 216.58.213.66:443 ep1.adtrafficquality.google udp
FR 142.250.178.129:443 ep2.adtrafficquality.google udp
US 95.100.195.133:443 www.bing.com udp
US 95.100.195.133:443 www.bing.com tcp
US 8.8.8.8:53 133.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 r.bing.com udp
US 95.100.195.141:443 r.bing.com udp
US 95.100.195.141:443 r.bing.com udp
US 95.100.195.163:443 th.bing.com udp
US 95.100.195.163:443 th.bing.com udp
US 8.8.8.8:53 141.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 163.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 www.virustotal.com udp
US 34.54.88.138:443 www.virustotal.com tcp
US 34.54.88.138:443 www.virustotal.com tcp
US 34.54.88.138:443 www.virustotal.com udp
US 8.8.8.8:53 www.recaptcha.net udp
FR 142.250.179.67:443 www.recaptcha.net tcp
US 8.8.8.8:53 67.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 138.88.54.34.in-addr.arpa udp
US 8.8.8.8:53 region1.google-analytics.com udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 8.8.8.8:53 recaptcha.net udp
FR 172.217.18.195:443 recaptcha.net tcp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 195.18.217.172.in-addr.arpa udp
US 8.8.8.8:53 110.179.250.142.in-addr.arpa udp
FR 172.217.18.195:443 recaptcha.net udp
US 8.8.8.8:53 www.google.com udp
FR 172.217.20.164:443 www.google.com udp
US 34.54.88.138:443 www.virustotal.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 34.54.88.138:443 www.virustotal.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 95.100.195.161:443 www.bing.com udp
US 8.8.8.8:53 161.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 r.bing.com udp
US 95.100.195.145:443 th.bing.com udp
US 95.100.195.167:443 r.bing.com udp
US 95.100.195.167:443 r.bing.com udp
US 95.100.195.145:443 th.bing.com udp
US 8.8.8.8:53 167.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 145.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 manalyzer.org udp
FR 82.64.162.37:443 manalyzer.org tcp
FR 82.64.162.37:443 manalyzer.org tcp
US 8.8.8.8:53 37.162.64.82.in-addr.arpa udp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 185.199.110.133:443 raw.githubusercontent.com tcp
US 95.100.195.152:443 www.bing.com udp
US 8.8.8.8:53 152.195.100.95.in-addr.arpa udp
US 8.8.8.8:53 www.adobe.com udp
GB 88.221.134.155:80 www.adobe.com tcp
GB 88.221.134.155:80 www.adobe.com tcp
GB 88.221.134.155:80 www.adobe.com tcp
GB 88.221.134.155:80 www.adobe.com tcp
GB 88.221.134.155:443 www.adobe.com tcp
US 8.8.8.8:53 155.134.221.88.in-addr.arpa udp
US 95.100.195.162:443 www.bing.com udp
US 8.8.8.8:53 162.195.100.95.in-addr.arpa udp
US 185.199.110.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 github.com udp
US 185.199.110.154:443 github.githubassets.com tcp
GB 20.26.156.215:443 github.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 collector.github.com udp
US 140.82.113.22:443 collector.github.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 codeload.github.com udp
GB 20.26.156.216:443 codeload.github.com tcp
US 8.8.8.8:53 216.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 collector.github.com udp
US 8.8.8.8:53 api.github.com udp
US 140.82.112.21:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 21.112.82.140.in-addr.arpa udp
US 185.199.110.154:443 github.githubassets.com tcp
US 8.8.8.8:53 objects.githubusercontent.com udp
US 95.100.195.174:443 www.bing.com udp
US 8.8.8.8:53 174.195.100.95.in-addr.arpa udp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 c2d9eeb3fdd75834f0ac3f9767de8d6f
SHA1 4d16a7e82190f8490a00008bd53d85fb92e379b0
SHA256 1e5efb5f1d78a4cc269cb116307e9d767fc5ad8a18e6cf95c81c61d7b1da5c66
SHA512 d92f995f9e096ecc0a7b8b4aca336aeef0e7b919fe7fe008169f0b87da84d018971ba5728141557d42a0fc562a25191bd85e0d7354c401b09e8b62cdc44b6dcd

\??\pipe\LOCAL\crashpad_840_VRXKUVQQZMXYTREY

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 e55832d7cd7e868a2c087c4c73678018
SHA1 ed7a2f6d6437e907218ffba9128802eaf414a0eb
SHA256 a4d7777b980ec53de3a70aca8fb25b77e9b53187e7d2f0fa1a729ee9a35da574
SHA512 897fdebf1a9269a1bf1e3a791f6ee9ab7c24c9d75eeff65ac9599764e1c8585784e1837ba5321d90af0b004af121b2206081a6fb1b1ad571a0051ee33d3f5c5f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 dbed169bdfff13aa31f68464b3b42aee
SHA1 2fd8382d72427dd37d4c7e19593cdb742c30c892
SHA256 a007d3fca17d12051f80a3d1df1185f8bf2738d1048121270f3122a79ada5de8
SHA512 ddeb7b4a010cdb53566907d4c09835d879a9e03527f0a7ca7ab0161c98dcd64eb4604814647b062ee3336068d727f709c83592f13b8661483ef72a2384f1f440

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6752a1d65b201c13b62ea44016eb221f
SHA1 58ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA256 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA512 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 6a0b20f8caa583928a28c8e1ce3133da
SHA1 1f13468ab6174c8c8f64837167301fc9f3617f8a
SHA256 47cd3b91eb34bfe2a3873e8e3abd931c1abeb4b7a651eb51add7a3dbd2fa01ff
SHA512 b35c269b8ddd416e96de3af2a8b68b2ba2b16d4552adc2da80cb6768996e743a948d64e2da6dbfa4ce8323da02865412598ace8beab9f53ba8c1628510862a19

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 d4292642a03dd10552fae9b1f6fef244
SHA1 cb6eb1f632f98eaa04d9fd8dcf2177bd10799b73
SHA256 8190690179c7a5396af6789abedd578e74ba0e33ccdeffadaafd3679e0c15719
SHA512 fc858724f32850ed2dd6c6eade46635abf280ab61e309145f6078ecce00b4eebe238386732f44d4b930a3b8a2b2aed2e346b9c14d903c5df26fc891095f48006

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 bcf7e8afc47a9b9fffcea4a75c24d4c9
SHA1 08438cab7fc99f34d0fc4c89317f58a33d7b095e
SHA256 d1743679555e7368554cd5fecd25ff5c88334186bd28181299f8f70efc109c5b
SHA512 2e260e3bc1950fb2e7be66e98c51a2d06bf3daacda3d21ac4e36921b248aedf7956f79d12812af7e93dfef0c7b4b40f5a13d3d5440df30fac2ff34ab91094e66

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 af9dedfaae02fd9e8d4f4f9b978463c0
SHA1 e71019a555b0fa3648b2ffc44c6db6fd9a934ba3
SHA256 2f4be0a2c4820a3ae501e5ad25973601046e37e5ecd653b45281c18b7ec33e34
SHA512 1e3b37e86d2bda30c0caa8f82c5fd5bf7da0ff1ba3c405cfc6d24d5ab0ed0da3e3e42e4a0e98bea1a1d2e92dbeb5acbd29cd47800f77914136137e69086b296c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5813e1.TMP

MD5 90df0d4047b3bf8ca1a203e5de525b88
SHA1 cfc2a84136110a2f6b840068673d2aef9f14d1ca
SHA256 99242ca79abaaefd36a6dd79dd717f967b385a4f1307923283709771e55163d7
SHA512 a4db27ee5e21a32c762776734e5d0cbf91a59596bb4c7a558d504fd712d97429e4362ccaf39b0128976a12eb46e573c24bb9dd28346aaa98faf4b76a182c90aa

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

MD5 c813a1b87f1651d642cdcad5fca7a7d8
SHA1 0e6628997674a7dfbeb321b59a6e829d0c2f4478
SHA256 df670e09f278fea1d0684afdcd0392a83d7041585ba5996f7b527974d7d98ec3
SHA512 af0d024ba1faafbd6f950c67977ed126827180a47cea9758ee51a95d13436f753eb5a7aa12a9090048a70328f6e779634c612aebde89b06740ffd770751e1c5b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

MD5 69df804d05f8b29a88278b7d582dd279
SHA1 d9560905612cf656d5dd0e741172fb4cd9c60688
SHA256 b885987a52236f56ce7a5ca18b18533e64f62ab64eb14050ede93c93b5bd5608
SHA512 0ef49eeeeb463da832f7d5b11f6418baa65963de62c00e71d847183e0035be03e63c097103d30329582fe806d246e3c0e3ecab8b2498799abbb21d8b7febdc0e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

MD5 2e86a72f4e82614cd4842950d2e0a716
SHA1 d7b4ee0c9af735d098bff474632fc2c0113e0b9c
SHA256 c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f
SHA512 7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

MD5 56d57bc655526551f217536f19195495
SHA1 28b430886d1220855a805d78dc5d6414aeee6995
SHA256 f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4
SHA512 7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 4551b9fa60d85a16103a0a53bdb09fe6
SHA1 152a2671e3df7f799311e814e20d02f648f4954e
SHA256 fbab7ea8d6688ac02f244c46d487c75be75709d8df62c2d610ff5eebdffe79cc
SHA512 b0bca86593fd9fb4a5c1e3430531aa53b40288222cb110274a8ca0833c64299fb84aa9fb2855b6eea5ebc12cd188257208b514080a83efbaba03e82975cfa590

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 0d5da97c36eae93e4f80d586a87670fd
SHA1 92ec5e560f6bb1077a4c5c0c06f5bd1d593c0ccd
SHA256 5fdad6fd984085d3dbf52be42205dd26c95155e87bb580877aeee4d35edfa0a9
SHA512 4a41219ab97b3e9b1108da3ffeb00deadbf8f9bbc293900cf8b508cd7f1bcc8d3c7a9ac43aeec9470c0e34cc7c16dd2e8f99d46628a33344b3ce2defcec7a0ab

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

MD5 0d89f546ebdd5c3eaa275ff1f898174a
SHA1 339ab928a1a5699b3b0c74087baa3ea08ecd59f5
SHA256 939eb90252495d3af66d9ec34c799a5f1b0fc10422a150cf57fc0cd302865a3e
SHA512 26edc1659325b1c5cf6e3f3cd9a38cd696f67c4a7c2d91a5839e8dcbb64c4f8e9ce3222e0f69d860d088c4be01b69da676bdc4517de141f8b551774909c30690

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

MD5 5dea626a3a08cc0f2676427e427eb467
SHA1 ad21ac31d0bbdee76eb909484277421630ea2dbd
SHA256 b19581c0e86b74b904a2b3a418040957a12e9b5ae6a8de07787d8bb0e4324ed6
SHA512 118016178abe2c714636232edc1e289a37442cc12914b5e067396803aa321ceaec3bcfd4684def47a95274bb0efd72ca6b2d7bc27bb93467984b84bc57931fcc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014

MD5 b9cc0ef4a29635e419fcb41bb1d2167b
SHA1 541b72c6f924baacea552536391d0f16f76e06c4
SHA256 6fded6ba2dd0fc337db3615f6c19065af5c62fcd092e19ca2c398d9b71cd84bf
SHA512 f0f1a0f4f8df4268732946d4d720da1f5567660d31757d0fc5e44bf1264dfa746092a557417d56c8a167e30b461b8d376b92fbe0931012121fac2558d52c662e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

MD5 7d54dd3fa3c51a1609e97e814ed449a0
SHA1 860bdd97dcd771d4ce96662a85c9328f95b17639
SHA256 7a258cd27f674e03eafc4f11af7076fb327d0202ce7a0a0e95a01fb33c989247
SHA512 17791e03584e77f2a6a03a7e3951bdc3220cd4c723a1f3be5d9b8196c5746a342a85226fcd0dd60031d3c3001c6bdfee0dcc21d7921ea2912225054d7f75c896

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

MD5 56690d717897cfa9977a6d3e1e2c9979
SHA1 f46c07526baaf297c664edc59ed4993a6759a4a3
SHA256 7c3de14bb18f62f0506feac709df9136c31bd9b327e431445e2c7fbc6d64752e
SHA512 782ec47d86276a6928d699706524753705c40e25490240da92446a0efbfcb8714aa3650d9860f9b404badf98230ff3eb6a07378d8226c08c4ee6d3fe3c873939

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

MD5 8bd66dfc42a1353c5e996cd88dc1501f
SHA1 dc779a25ab37913f3198eb6f8c4d89e2a05635a6
SHA256 ef8772f5b2cf54057e1cfb7cb2e61f09cbd20db5ee307133caf517831a5df839
SHA512 203a46b2d09da788614b86480d81769011c7d42e833fa33a19e99c86a987a3bd8755b89906b9fd0497a80a5cf27f1c5e795a66fe3d1c4a921667ec745ccf22f6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

MD5 c7b82a286eac39164c0726b1749636f1
SHA1 dd949addbfa87f92c1692744b44441d60b52226d
SHA256 8bf222b1dd4668c4ffd9f9c5f5ab155c93ad11be678f37dd75b639f0ead474d0
SHA512 be7b1c64b0f429a54a743f0618ffbc8f44ede8bc514d59acd356e9fe9f682da50a2898b150f33d1de198e8bcf82899569325c587a0c2a7a57e57f728156036e5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

MD5 2ee3f4b4a3c22470b572f727aa087b7e
SHA1 6fe80bf7c2178bd2d17154d9ae117a556956c170
SHA256 53d7e3962cad0b7f5575be02bd96bd27fcf7fb30ac5b4115bb950cf086f1a799
SHA512 b90ae8249108df7548b92af20fd93f926248b31aedf313ef802381df2587a6bba00025d6d99208ab228b8c0bb9b6559d8c5ec7fa37d19b7f47979f8eb4744146

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000013

MD5 76d82c7d8c864c474936304e74ce3f4c
SHA1 8447bf273d15b973b48937326a90c60baa2903bf
SHA256 3329378951655530764aaa1f820b0db86aa0f00834fd7f51a48ad752610d60c8
SHA512 a0fc55af7f35ad5f8ac24cea6b9688698909a2e1345460d35e7133142a918d9925fc260e08d0015ec6fa7721fbeae90a4457caa97d6ce01b4ff46109f4cd5a46

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000011

MD5 a2a3a58ca076236fbe0493808953292a
SHA1 b77b46e29456d5b2e67687038bd9d15714717cda
SHA256 36302a92ccbf210dcad9031810929399bbbaa9df4a390518892434b1055b5426
SHA512 94d57a208100dd029ea07bea8e1a2a7f1da25b7a6e276f1c7ca9ba3fe034be67fab2f3463d75c8edd319239155349fd65c0e8feb5847b828157c95ce8e63b607

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

MD5 6c1e6f2d0367bebbd99c912e7304cc02
SHA1 698744e064572af2e974709e903c528649bbaf1d
SHA256 d33c23a0e26d8225eeba52a018b584bb7aca1211cdebfffe129e7eb6c0fe81d8
SHA512 ebb493bef015da8da5e533b7847b0a1c5a96aa1aeef6aed3319a5b006ed9f5ef973bea443eaf5364a2aaf1b60611a2427b4f4f1388f8a44fdd7a17338d03d64a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

MD5 73fc3bb55f1d713d2ee7dcbe4286c9e2
SHA1 b0042453afe2410b9439a5e7be24a64e09cf2efa
SHA256 60b367b229f550b08fabc0c9bbe89d8f09acd04a146f01514d48e0d03884523f
SHA512 d2dc495291fd3529189457ab482532026c0134b23ff50aa4417c9c7ca11c588421b655602a448515f206fa4f1e52ee67538559062263b4470abd1eccf2a1e86b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

MD5 f1dceb6be9699ca70cc78d9f43796141
SHA1 6b80d6b7d9b342d7921eae12478fc90a611b9372
SHA256 5898782f74bbdeaa5b06f660874870e1d4216bb98a7f6d9eddfbc4f7ae97d66f
SHA512 b02b9eba24a42caea7d408e6e4ae7ad35c2d7f163fd754b7507fc39bea5d5649e54d44b002075a6a32fca4395619286e9fb36b61736c535a91fe2d9be79048de

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

MD5 0b17fd0bdcec9ca5b4ed99ccf5747f50
SHA1 003930a2232e9e12d2ca83e83570e0ffd3b7c94e
SHA256 c6e08c99de09f0e65e8dc2fae28b8a1709dd30276579e3bf39be70813f912f1d
SHA512 49c093af7533b8c64ad6a20f82b42ad373d0c788d55fa114a77cea92a80a4ce6f0efcad1b4bf66cb2631f1517de2920e94b8fc8cc5b30d45414d5286a1545c28

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015

MD5 b8b23ac46d525ba307835e6e99e7db78
SHA1 26935a49afb51e235375deb9b20ce2e23ca2134c
SHA256 6934d9e0917335e04ff86155762c27fa4da8cc1f5262cb5087184827004525b6
SHA512 205fb09096bfb0045483f2cbfe2fc367aa0372f9a99c36a7d120676820f9f7a98851ee2d1e50919a042d50982c24b459a9c1b411933bf750a14a480e063cc7f6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 6a0b85cd300317bb78a2953925ee1ebc
SHA1 b55eb9e98e9124f8255ecb320df9a26e75f3f748
SHA256 afcd6e432d909135c7bbbe253d971aaafcd7c3c2918f1586aac9280e8c8c6a91
SHA512 f8d7f3ce05232e65301ba66b0d061b69b6cbcf506f2f8813f5927438a45f1ef2da37959f5149f48441d4401f8661cd755155e760c56d0dba6e7674de5f54f8e5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000016

MD5 5615a54ce197eef0d5acc920e829f66f
SHA1 7497dded1782987092e50cada10204af8b3b5869
SHA256 b0ba6d78aad79eaf1ae10f20ac61d592ad800095f6472cfac490411d4ab05e26
SHA512 216595fb60cc9cfa6fef6475a415825b24e87854f13f2ee4484b290ac4f3e77628f56f42cb215cd8ea3f70b10eebd9bc50edeb042634777074b49c129146ef6a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f7f880dde96b11d2dca604ef06200ffa
SHA1 0fa0f775552d700b586d85aa0ac7ad5e4b1c7096
SHA256 5478e8f9fb044ecc0e0a52e9676eee22f271e6c146b658bae2e6ab1967d59b1d
SHA512 9f8a301d0bf2582ad15d9c3d09ec3fd1082111a429cd9f82955a6a69d450065636c7489ede79898e8d22e467141fd6b65ee5b3617a92d0cd448c69dd22ffdc11

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 bfdcd6d1cdef394029958fcf93e8d995
SHA1 ab6696668c5803865c25f16940f567bc2480c4e6
SHA256 5f3ea8b8dd5aca15f5dde4f0cc952f0cf59a312dafb1ed697b12140c66a03095
SHA512 d74caa7d5d9a9923ad2c091ad20462f9e6b1ef8a9a0b75123141ca740d2bc5247aed36f361a87e627882aeb2ef1056c44159ac2189219a596e30da8289169189

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 8701a8cd52d90d8d6feaeabfdf9ece1a
SHA1 94e3e4ccd5bffc7099977d707a0ded887ea46924
SHA256 484d51c56085aafcccfe11f66a75c72bae2b9e006a38ce9bcc1301d4d3b891ac
SHA512 cb6b8baf1c856138f18f5c04e8087b98e12f98bee3d041b1e28631ff5628fa88cc89683669eff0b00662830f7fb4511bde131fcb21337e13c52bef87e96fe4f9

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 3c90f52d0097d0be5ceb721dd0a2ee8e
SHA1 3ef3f8d0a856ac55796cec8c15433c747b25e88a
SHA256 370d65377decdd483817e3d2d5a48204c9a0dfa5bf641ff978cb8bc794b4b143
SHA512 fde5f499fef607bd995414226dab9a7f8a18af71e97798bb0f3fe3131c8f0ad566e7b0f492dda924bf4f009fc7a77528b84b79aec21791afb921adfc06762e69

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 35c924b6bb0ddfc241d12289117368fc
SHA1 a83d252a7dc36b32b90424944427e4d783eecae5
SHA256 01e063174b76f0c99da7f1575d13d8a2ec316539b70c48aaf94a3394084905d1
SHA512 b62de464857eb26433de447af17929f31c03d8fe748d7581967acdc18aba98cf5cdff3d8f1c7b13784507048a2a04d7eacdf73570147b59807972c685acd819a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 43a54bd50906dfed28640492429446cb
SHA1 6e8cb493cfd629edce1f2372d7941da42f9d43bd
SHA256 2172c2cda0094b97de7ba5602876e63ac23bfabbc6644ea418ac1159c4eef658
SHA512 731230873a537189ec1fee618ae08be395e7063a0a784f1e5bbb0239c0f2a07b9ed605d72dde1ce8896a4773d8b9b70ffc4169c9c44b04ffd6fe91d359478995

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 e2c7f8c25dc1457edab2c3c0c0975a78
SHA1 b5370710e422e60663bb93a629841895fecf2bd9
SHA256 7109bff7400dc5b2329580c535ff933cf040c164fc49f959a4ae6b91336d4863
SHA512 a372226768a95f913b6c75531f64c7ce8a57554c3014159e55ee47b73958d97dba3793fb55d3b2e0a8086398ca3da7b074fec38a3fa5322b449bfd414cfba609

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b77cc7fdb69c2940_0

MD5 87864da1bb8760ebbe13a34ffb26ab61
SHA1 ee22f94ca25bba730ee5a4a66d3f106ebba83589
SHA256 cef78ae45d7c36e1bcc5adb7227fb7c7fe43b4f805d545eed0a6e19f9271d6b3
SHA512 7f76fe893649d0023adf00faa99ae3ac51f860f7b6c7fd25313e3180c6392beae780e073d79e17ebc2996d9b20f47b83cae2b85590d56dfbf8af27254fe76ce5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\17cc4188e22fd9e4_0

MD5 c8b26a86e91f2b867f17efab338a2abb
SHA1 4e4bb4b89db5d2628a03361636d578928ab7c31f
SHA256 583836e0a5abb248220aa6d62901ee96efbc58e42db816fa3ebe87c3bde714d5
SHA512 23a367f84ce3d5fcd031d0852e2080f2c4aa356beb30738c8a7a5e32570aa986fbe1bd89dd717a7bf3b63c0738b45cbba68aa4356af39de4bf77742c2dc78aa4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b17300b737972628_0

MD5 1e47a268994d76a09f6f2a0307bc84be
SHA1 2f7250f377ea47f4147eee0e6c1959e3cffd25ed
SHA256 a7d41242d6515e2959e115abd1fbf46ec7bc5025fa3811c0ccacab0c56ca872f
SHA512 d412dad16b67f68d2aed5597f25547d30dde5afb2f784834c4b5582121c98b64ce5d509b759db604f8b96b0c39d7e6a3f805e143772e37abb01878575d7dc94d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a90b546f97b297b3_0

MD5 987664908f13efa01dd2dbe022565b11
SHA1 30ad5588335206e196408da375070b19c3afad01
SHA256 eea374bb40835da6c12878c7d89e1bbb6d65cc53ba4fcc6bb3b8b7b5b1310eb1
SHA512 038e314949e08c2c4ac07d8a083a3838c30f4e5faf35e7cd73293d086e49cf37eacad4721bbcc288ac4e4ec89bdee855cb75c2fa87d00b05e6a06bfbad558199

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\387d1c1009f96627_0

MD5 370b3b8a70fc6e0a0274fe2e3b36ce6e
SHA1 375fec9e69e94cff6f12314ef2b02a8aed548f58
SHA256 bea0d3fd0b9b8d523427fbbffc9858e33db41f45627173cdd86b189efc63be92
SHA512 0659d49ddfe75319b96f3475b773147c684009f1f81944e1ff9ea2ff109cd231b1975f3c9915d58931594e75f0ffc2b2e3fd6b92e4036620cc772d6ed0fb1aff

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8f9fd988dc5ea5bd_0

MD5 b78429349c2e5502b066091109f107a7
SHA1 872b9437e8415dc69c424f9c51978dfd27974c39
SHA256 b0b130bfe5f160aaff7f33b8078a13d9f27a99da476d04d79ef87fac2aa12062
SHA512 973b22b8d7c7ff3c441a078345120e5fc636b342f21fbbe587a68b72879cab54139a19ad2ba162e2cc46744446a77a7320e73728a7cb6326a25b5f42ce4e28ab

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a7453820c35f296f_0

MD5 fbfcb05ebff8680d21ebee29aba4fb83
SHA1 7e2551420cab07dab1fa40385e5c6e4b7e665e6c
SHA256 7c5e3897660ccf540076523f457ec917b25f3774dcd67704f3a136797c9b8d5c
SHA512 0f0673b3d61961593091e344e06d348364827118e5eb7511113e0f241b74d88dea024d0b0707fde0e4cb27aa385d121258e8e5303d5b3f5e81c66ce62fc721b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\46a70c33204b2836_0

MD5 ae60fdc2d992d88a8fcdc09405312747
SHA1 4703144fc1ba29ddefd6b65c749668c7deacfd15
SHA256 c00fcbeb0a0a9b6f81a9f8705ea2477f23e15004d040061e8f5ae8671d9bc163
SHA512 733fbc3af998f2facf8e90786907e2a904fc6ae346be921ad9924db610f4adef94f4ab5f751006eb8e59634854032c46d2a3046f87d0c8adbe5765e7533ed0c8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\67978ba7df192b35_0

MD5 448846af1acf79b39ec8cb68077c8c8d
SHA1 f5890b7fd3e5f80ccc10781bc0b73ae020befb5c
SHA256 3dfffc0a55cb4c342d673f601f01d259d85789b768d1de5af767f3dd410e56e0
SHA512 400e5f035e2b9d21cf4b2ccc26b238ac02f007cfa7770488f783f30cc5fcfcdcd74e4732932905f69c5105432c942e0d3280dca6b65267179476b47a2a5f6156

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8af44c22dcc8d4fe_0

MD5 a1a170081b90d202fa57bb9001fe1d0d
SHA1 899f13a47b259facc723560b13c0894e128df90b
SHA256 edd5dcfc024de444977f2bcfa79e4ef5ae234fcc464139eb2a315b3b3d3ceae8
SHA512 898f81d59460013c1e8b4d59caca79ceb217b612b5e6993552b0e3b05acd6bd7cc22689a01c80ecca14a5bf3ebb7cb5c36b8e62e259b4ea2b5154c001d41f865

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5f9bd0d103e1c4ea_0

MD5 274178939bc158ecb79984a19dd3039f
SHA1 8977055eecedb597e137f0652cb57747ed3cc73e
SHA256 96a7994170cbca6757f237a969146fe82e007ba2e8fbe2e196bdfc9ffd55a464
SHA512 80ecb973be1bb2bc18576b35f21684f087d9f4923596a5bb767655847a7cffaf1965bafb9427ae687636926359a1667e6048fd9affe2a5ace1b771e010a9699a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e603bf1802f018fe_0

MD5 ca0ff604c902a2955e06ca669b8d81f7
SHA1 57de97f1582587fbee280f997fe3e21b56ac2aa5
SHA256 b9805524952fb1c7da1e602729cd8352dcfbceb3e5540d557489c40c3be59705
SHA512 a0fcff4e1ddcc80cfae115cddcc0717672b5471118508804752cb2d0ddba9f0f425b32732126f68901bb0c3283abb967db7c9a6846d78a55f617800b12de4e59

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\216dc9407ec6ec5b_0

MD5 76ccc497b88d024b52d9c0f708977d03
SHA1 bdafe905022ff0748c14345a3cdd1a7a94507fff
SHA256 1ba85b3559e90068b24fbf9ecc58f683246c0b0c03c4c8bba04c4fd130799c6a
SHA512 681a83a2f30fdc98814beff1057c1dd4f2ff56960ab4a97887c4ad2f35eb8b895046f13e5286210310866e3272c8202af3cc9737f42a74feae03bd7b857e4b62

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\db80d672a14a2d79_0

MD5 1308340219861839f3c825d7b3851b00
SHA1 93855d8d36973c68bb395826fe359ca31de1ef67
SHA256 0a7ac1499f12ce7752660f4cc1e674ed92d01e8e3ff662ab353ad2c1c5de0544
SHA512 10fd3d47e40af6c7972a44cab57d0c4900e0ceb65c447cc1112daafed48d37b01baf4d699459e4cd75e0e54e12c2f27138083f953669a5dd25efc5a587319bb4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7b4311b2387bfb57_0

MD5 9425d28bd68a5fe903019c5ad00e8507
SHA1 18cbce29d9482c884afdffedf6383a7364053cce
SHA256 a1d1d163526dc6cf2efef1936fd4e49377c9dd8f84dcaa33b0bd12b25f48db52
SHA512 26aae3cc7f1a7505b16cea3766bf9a18648a6c2a430c18e508582bdde58e9118d6e34ffec04022d2774768b87aa93c90eefe6e9c054ee52244b45442d277540d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b3aab5a8dccfb4ee_0

MD5 3a23fad4cf6d05c3005a996966c1b2a0
SHA1 aedcfbb3f4a792e8e1781eabd9c58585a5dc7e45
SHA256 38fd19bdcaab614fa90b6efcc2153e58bc63de95e75387173dceefe1f626a16e
SHA512 a532ce81f6788cd9f6b05af117a1aeda5ab2acd9d7c38d9631008a5ec3665d5fa960dbdaf55512f9de0b36ed68de5ebaff3eb340429755f55580319ab48c60f6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bcf82c34ab8d06ce_0

MD5 3fdc71af72b9fe64b5861d2cca04e3f4
SHA1 b17f61248b8b06b68bec6c6cd9ebd460d5cd8778
SHA256 436fa8707da6872c94d03c57e62a3215482bad2d9b9272e84e42596e10d86489
SHA512 61cc26c00fa1360414a18f1c0a67679ea6056973213cb794dc75d1d259a8240f85bff11d0de63883cd0eb6d47a4feb8018ee43e67e7dd44401ad45147101f326

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d3f51dc4e02a4d1d_0

MD5 21c2034a0fd23639fdef34926335ccac
SHA1 7ec445c0b305e6af2b50c5f75b03bb86cea77e9a
SHA256 fed9770287aa05fb54f20f0c6b2b51ad55812f580f85abcac0b3f5ee39b94576
SHA512 8fc8a352ea6455a16a748965d281fe272648caabce038c27dfb860e64b27e6986c36184b129535d28bc828b6dc2e83d67a29ba0999efa46a9b7a5c3a8e2aad82

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\88f32242cf1da472_0

MD5 5b1237f922f0ec147594c8e49e4e06a2
SHA1 af7f35a73912a44cdd5615a76bac9c8240c79950
SHA256 3a7c7ff5c63a7a647c4014a3a4963640e6bf2c457a1f96243e2485c6245b7c20
SHA512 9448023a7eaa171b06402d1db55b7b6665cc44b6ff2aeb7a7635cb9abf2675020500f913202ba7bcf905af5f36d72bfe790a4b00dfeb7564f1901d3ae33e557e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f5c5b9cbc406ca3f_0

MD5 55d9171d1ccb6a0970f9ab5f31b6696b
SHA1 b732e262d9027db188aef44f18a687776be50422
SHA256 3c12a95966990ab468f0295ea5e619039ba039f9c2fee2c690d8209f04200140
SHA512 d848b0c3d01afce35790b201d351a46551d5266ebc7499c6da06baa78b4177322d6875e46b3823e02bd7fa560666b7e56d9d8231905b33fc77a616b32efdd1f4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\94133c491567ed48_0

MD5 44331fae72418d14b8fd55ece6baa024
SHA1 f3822f5ebe5d4929f50bb5bd48326ab572fb9b85
SHA256 5ac65349b8823ca0c20b5b6cbe0ca1c70b54e7ba77cac613e116cc5f3720a0d6
SHA512 b24a1bd87655b52c57a2e01679671a224d7560a41584bc5acafd5833a23da8240443d479b7801b06d7453604336122a3c126a18c0614b0e00da3f37963477e8b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 58efd94c599295d4dc5bb6477a3e2f05
SHA1 595635213f187617054fed4de9cd09686a176581
SHA256 95dad65a1a05e0ed69286c87c405c29493b8433227f1bcd2365ba729799c79c8
SHA512 59badcd462681993c23fa8c1db2b4f190d20443eae244449b1baf0f8d816687a134b7fc47306fb866a5203c5354b844b0b93d7a4aca9c5face7589b0c47e4ef5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 34e75d4d4fc1e8024dcaf97404589015
SHA1 04383df0bdd51540522f2770c31a04e8c2d80d05
SHA256 c1606e61f03d6329847eba1ecf820f80684f7346354c51a2ecfecf5aba156aa3
SHA512 50aa2bdd33bdab22315f5dad38dc56892d7971d95f0b988f39e450eb93d0cf1c89f26b002260fdaf5a1ce1c3784d8f06d7c7f2c27c1fcfdc1118696e1f394e44

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 51a4fa70037dce8dc0df255fc24719e7
SHA1 45c55cd82332e9414a0cf9830877d0eb109a0bff
SHA256 ea9803809349dd3ffc475af7ebece2a4641609bd0d7607e22d6c12dfccc88086
SHA512 52c934c5a3369a9c0e386bffada9d7fd2a0f6411755c514aa25783ae6f1f8c7a6a377706e761661aeecdd33132f73c82a26e18b24cb69c1fb48a1a8db0d1b918

C:\Users\Admin\Downloads\Unconfirmed 294982.crdownload

MD5 ad2bb2f71f3ce01905d42b741d427f35
SHA1 d2e065dacf1d11d6d3d584df021b60d692d2fbf7
SHA256 aa498bb3e89aef5a908f37842cd0016d71a47eeceed0466a3d7f076afad64315
SHA512 830384881e6706aa928c33a3230027e593fcc5ae26a55e70110674a1b9c9ca1769417407d1241ca7024eac7c1627e0a53f62288d70a5a2b8bd7cf6afb789d500

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 78e2272aea05e07bc06281d8262e1036
SHA1 210e46cc29a999a819da309c7b01f28c46c80902
SHA256 021ad46ec2369bdcfffe94f66033f3cef3d0a8e1a41cbd6b3f597358f9c54297
SHA512 f9581fa0bb5dd89feae634d381dc1c6740e95d85fdc73e8d62d82f7775025cfcdbf73e3c57a170060c7b68d1e55fb03d6aa0aecbbc045430f9498ca356cf0469

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 320bf054a376f482ab229045a34302e3
SHA1 7daa81384c29855cdefd8b0ed9fee6711b13be2a
SHA256 97944d7560ab85bd1a656e7716fd28e1234ca6f57f2df1f747c966a49cd24b76
SHA512 a58c6a9b4d16e4b861708f4390485f3b893d36419b2a4d1a4735140220a905fc523c7460deeef7b40e4963531363eed7a429c47e2c99d55478ecaca49cac1635

memory/6136-1353-0x0000023FC1CF0000-0x0000023FC1D08000-memory.dmp

memory/6136-1354-0x0000023FDC3B0000-0x0000023FDC572000-memory.dmp

memory/6136-1355-0x0000023FDCBB0000-0x0000023FDD0D8000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 b9f00f7dd0b35f47283999109a835de3
SHA1 8d28cbc5ee35b71886bf49e5beabbb2041e6997b
SHA256 f65fa9eee60e155c12125948e5c07502bea30b64e1b8ca3bcd089918b4436b0c
SHA512 770bf6627ae9fd6acd53a71502cc33da17d3fba09c0bbefae95172a526a7c7df88d8f84537eb3909c06d212693b2d6148870f866a095424612d10c259ee4c33e

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 aa1de22707af21f62cc1dcc6f8098c1e
SHA1 0384c71d917ed80c5dbc22777092d92511388b78
SHA256 29fdc73f255cfa323fe8b4031588585b76961e052ef4752b6a7fbd9ec86b6cd2
SHA512 692008cfcb766e3f41c1af5b88cf2857235ad14273c9ea2727560882c8a8c3d2d1d0236a44a2aa8b6acaa9077091c2c4eb0491d1e421ff12a47cdf6d88efeb56

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 51bfe90773f0ab3f097f0397d781cbef
SHA1 6f397406763ee7f259d01c26fbba916072c241cf
SHA256 b78b3e0d1acc45c956a702039eb51bfa15e053394726522e82cd572ca51ed9da
SHA512 3ba72ecc5a332e10dea1af75ea8bd40aa530a71fdbf87a36b0cdb521f758d93206a7cdb24402041fd259a2f0b6f3907694a6ba13c5ea365f8ab097436bc46911

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 aae3d0dd039bea2149914996a88217dc
SHA1 b2f006b1f4fa9bc939d4fe6bc876088fe9bb40ca
SHA256 3300f48645a1f6cc9df2c2781a6f08cda07c5aa25aa4bda113e3af4420ef6ca8
SHA512 8baa4ce527b0bccd5018c70e0d50248967030a3128d69f2925f183678d9c8db8419a1b48a5e113402fabd66fdbc8762eba7b45f35c2e5241f7d3898f69af0963

memory/4620-1447-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1449-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1448-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1453-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1459-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1458-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1457-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1456-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1455-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

memory/4620-1454-0x000001E3866B0000-0x000001E3866B1000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 4d8e1e45d4a8641ad68ed6dee3bfacce
SHA1 673bae470ca35c308a1d5196cc2ae8ee2718c371
SHA256 0af120fedec4a4965f56049e7a2ee164c993492015e9ad12beff980ecd649365
SHA512 4c8a09ffa29c20d746d8ddea1389cfa3f10053c68d009aeffa4edbb663a3e6ac3c7b6b06ad89578b87671c39534f5e00e61491d5a9494e61e892aa71dd64233c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 c7296c7e2bac016847eb2febb4057d6b
SHA1 f9397debe7f2845ce976c3e975275b398de31581
SHA256 a8eeaad0887bc09affe2d6a496eb3d09714cf29031e3ece8e5fe98f6d22b275c
SHA512 659e1b7d33dac9927e111671ed58a5c5dea3695d9065061cbb3ac9dacf33634ec3a6ec684aabdac832c951264a5062ffe011151fc3086985164c38fc6a136401

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 f0f43f6b2ba5eb4024b5f8ff71b9f436
SHA1 57446562fafa3f2fdca146af456e1319a1becade
SHA256 8aa2acd12dcd0867bc78ad1157bdd8840808afb3d21f448d7fc0bd958c45f339
SHA512 dc2475ad30ceb0d8947523cf8dbdb047d426974da0beb3440810f5d4e00ca964f9ce04a09144c774eb3c1e435003555f1269f1736579705c0b3fa98e5a4c0029

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 8b29aaa93eb4048ecd8d6c97ac6e7b27
SHA1 fe76ff76f840a3ebda680321bf3e8bb0c0eb14c0
SHA256 25a33f09696211c7099e2ce39d9a9606389829db5c24c00fdd3e6b75d626ac0c
SHA512 07fabf45b5341c6928a2d1bb13aa5f8953713e7b281b581e886fee53a0d81a17d5c9184676d4db55b0dcc1a4b630221d087772640f7b5aae32e995774f18ff28

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 bc9f3c0afbcdc139afc48fd190e4950b
SHA1 a9e459f28ec08344c6205e7ae809bc6a85ad22d8
SHA256 af808423ce8360a741e2bfeebc1f4244d205bef76072ebe40c8a320199433a1f
SHA512 06e49a750602b300002d9b4e9915da72b554f721a59a6d6f68035dfb88c468523757aaf01d3d9b36ce6438d9372a25d2e342af2ecc3478448cafab25042fa14a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 13a4ea93028b10216abf59e0f7d5fe6d
SHA1 132a29c0f3d97463a73530ad0d0224bbe2f82810
SHA256 7ed2456dec90b1cb6f9610b90999db07067d391b4c0dff733e80e72f62bd875f
SHA512 657dd3e818fd7763cda5ed9be590895ccdb1773c300baeb68bde3fcec578b71bc7b5c1f21979b196390ab1377ee96ec5b17adce4b3e726905e3678ce212332a3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 08756cc12b754a463c20cd9040d41f0d
SHA1 ae8d5a5d6b049ff3f0cbad2c1ceac1253f72a129
SHA256 d85a147b1712d49c6515b9f8eba3644caa223a9541aace77b447683a4ac00f99
SHA512 bcccbd25e2daa7281250521d9503ad087bf613a4123e3ff8c12d42869b156429a9d56fc11730cda1ac42db0d47ccd0cf4f4532c32cdfa3059ac33b9086bc0f34

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 fa77697d74805ab7a5c6fb52daeca817
SHA1 7a78911a4568604f04c2f5364f9c6cc65b14193e
SHA256 008d0ba08439e1b9f3af57ee103582c7eee8e58275b807545644992a438a7a0b
SHA512 4cd6243aa85280846abf649c7c245a34cebaedb5f291bad7c9ce686bd06d7f7a4f03348aaee51db6f519a2e4dbd5ae0b0e6673783973377f0738d315692ec8bf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

MD5 838a7b32aefb618130392bc7d006aa2e
SHA1 5159e0f18c9e68f0e75e2239875aa994847b8290
SHA256 ac3dd2221d90b09b795f1f72e72e4860342a4508fe336c4b822476eb25a55eaa
SHA512 9e350f0565cc726f66146838f9cebaaa38dd01892ffab9a45fe4f72e5be5459c0442e99107293a7c6f2412c71f668242c5e5a502124bc57cbf3b6ad8940cb3e9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

MD5 5eea1158bcacb2e57f9c4df68df6c495
SHA1 5cdb8d593f7e4bf910bca6364b842850d9339ae1
SHA256 8bbb8c5e6fdfe9efad9b48c9beeec22f6b79adb8408e45d7e595d07e19e97857
SHA512 2069d44acb1bb54897c94ea84d6fbe4d4821dc0d78877a4b3578e629634cf18eabcab64f118f1cec1ec823e9fbb93a7480e0d731b25c3ba50336ebbbb3ca48a9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

MD5 a206ef49b0b526a0411122f12f71571d
SHA1 fb3e455e43147811e59b0ae71de771d75f13c7fa
SHA256 9a0f0c06956ea777bbccc02884bec066d5e1cef5576436eed060bc3473836c29
SHA512 1b6eee44d68c3569dd5b810c3375a8da4557c64231600a8a56d5d08635c0f8681318571201517dcaf1cbddda1a6ae6c9f89a673b97f39d17ad68498e46e00f07

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

MD5 d9adf26719037427dc751162cdb14679
SHA1 0866fae6077dbe8a87421905356518d77cf75883
SHA256 9078497ad1f24abaea06e92c86191b348171b7c2919524c98ca756487bea4914
SHA512 fb72d9411e43b3bef9ec1b9f4e7eb253b7b306f7f883f16d83f9f2dcb7d1165a2ee67b19c87637dae31d00e9df37cc945e900bf32fce3da0b103b10478d79081

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

MD5 8fec7d6fd7acc8e9d3fae22b81356e25
SHA1 f07a8f1a220493b3ca3591eb8ae786d3d250b85e
SHA256 46d9b1a1e7436923ac59061c5a9cc201425e74dc6a14f9e7cd15dd512e7cfa5d
SHA512 e4d360d5dfd2332cb2f87f677aeebc1cc528d6cb3f8fe5119269a39b089b392d7b3ac139adcb42c132ba5e921c985e4e8cd6fb7578fc5d99e3f9090862b20ffb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 53f82739b3238c46d22b1361fdf19004
SHA1 c88120dcad4b6ac24c67595e2379c3aa9354f5ae
SHA256 53036d8a174bc8976a071698c3589cb2c722f174d5b86828233031a62ed5b69b
SHA512 236f3525195928a00c4e7c5cf46e4c1155a4bdbbe7a15a98905ebdee40108ed3fbbe3e7d57fa0e29960ee44b8f537c063c8ba32340d5e24e3dbb8006f8826217

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 aefd77f47fb84fae5ea194496b44c67a
SHA1 dcfbb6a5b8d05662c4858664f81693bb7f803b82
SHA256 4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611
SHA512 b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 722fe733fc07a27a906683fd61c39ea4
SHA1 ef1dd4a0b1b16fd733db717e8e2fcbe41a8259cd
SHA256 315899b94b3d2597817ceab6d3590388166519d3aa13739e068f5e3641fb6321
SHA512 42e25bcaf07a1ad24dc91298f82f3ee931700f5b9e6733a825c02dc9f376f4bbaae6c3c3d673cfd1ee13e337693bfee9b8db09ce5018fb1a78b89dd921b08c25

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000048

MD5 a4f3afc86190a2d47f56664367af370e
SHA1 57613bcb2a288ef2508e847e7ba35d52f2e87de5
SHA256 52fd14eb766bc6676dd81e3bb50a4dad1891bb9a47e38c3ec620aa6c2b487c42
SHA512 bae75c59141ee60ef1fc2c745117fafea3d386b64f2f67c1022909f295228578bfc5e5e49de5a2f2efd57e75affc0a7d09fbee8fa50aadd82aff446773fc690e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 60b15a44d1c4ca076e19e6f958319602
SHA1 89ef7901ca70a0316ed32725df210697dcf75e97
SHA256 f01913539449c82d8b2f16516cb8e2cc8a7e1ecd979cb91526f4b81536090325
SHA512 c41161efac519a976ab867c262cf6e1a859be363c4cb770327f5f71be3304bc1e67fd3630b3c5383aee201a03858e9a83a0f41c3618d4606c7f2e7e0825ffdc3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000041

MD5 bcfda9afc202574572f0247968812014
SHA1 80f8af2d5d2f978a3969a56256aace20e893fb3f
SHA256 7c970cd163690addf4a69faf5aea65e7f083ca549f75a66d04a73cb793a00f91
SHA512 508ca6011abb2ec4345c3b80bd89979151fee0a0de851f69b7aa06e69c89f6d8c3b6144f2f4715112c896c5b8a3e3e9cd49b05c9b507602d7f0d6b10061b17bd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 502631532f56a7f5bc837279b6aaa5f8
SHA1 d7165f8470a67779f6ae73ab78877fd73cde9b9c
SHA256 7f4f545b84df1bd48544ec11b02767d4a94fed3cd5af72ed5bbd4043690f0804
SHA512 978e1450ee35ea4ee387a419ea42eb13e643267e93beb9bb6c7d25557ecdf44c7a1d97299b5fb895cb46ba8cc0a48362007e225b3852dab65a58331c819c3c88

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 18901a25cd76ecfff354ccdfca7a24f5
SHA1 747189ef55e39b1c4b5de8e9e2b82821405ed07e
SHA256 38e9ceacd1eb05d4aebaf7033aff3796f493cb6d90d427026908f2a50dafb369
SHA512 fe59e8cc32fd1e6387bedc5f9e4b8f4a2617305a2263c28997ac51043b0fc0353cbd2dbb60a777c27d474d9ba0f0b3b3f9b333f114cbea0216c980cfeb39c29b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004d

MD5 6fb26b39d8dcf2f09ef8aebb8a5ffe23
SHA1 578cac24c947a6d24bc05a6aa305756dd70e9ac3
SHA256 774379647c0a6db04a0c2662be757a730c20f13b4c03fe0b12d43c0f09e7a059
SHA512 c40f4771c10add1b20efb81ee3b61fc5ede4701587f29a1c2cdde8b6faabd1c76d769bf8b99aa19082012f95d99ba448a472463fb9056acd2e43542e14e605cd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 9c2ccf91c3eed0d9e4134d59b183f080
SHA1 c822de8190418a74cb8f670df94ceb5b0de5c0bd
SHA256 261bc763e1395cfef9e1424621bd18b2144cc171e5518f98cb06a461ea3e2ab6
SHA512 06fc46aa51eea00058db6cd7b0eac10e2f80e08e5cbcc00728fa5513ab046481681afef8ff1ebb18902ca58c3c874410e7c5c61807999222da01342e2657e36c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002f

MD5 63c2598e1d7844a30e0af90361f937bd
SHA1 6e1c783445ca2b1f94488ab40521845f975038ea
SHA256 eca238c54b5eb11bc768f9e17c0621f26b55c089a7b75476243c811a32d7aac0
SHA512 f0f77d651c67dbb9d627d0ded45c07b474ee4cf4e886c073ee4a61d82385d747a855af04a8ccbc1fc95cf46afd7c876179696273115d2f5a21f11fdf5450ab82

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000032

MD5 a8c6e9adf05bb778f0e9dd3487a1b569
SHA1 464e0df8d67856cf5e8c0ac7944ea45dd9787f7c
SHA256 543c3d73f11cff8567214a3c57368e66e4547f5e6237db0cbb13332b11b10be6
SHA512 505972283b812e0cf8666c488072807444cdb0effa01a1777d1f178eb4833879893ce48b93da74bd92ffc2adf7690599da4255b26601bd0934bb8489a7b2a089

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000033

MD5 1a9ede621a157e37a70f0627ae2cecc8
SHA1 0d68c0bcbc12c326db3efcaa8c51b256c7550a37
SHA256 5c95ec67d021e67dd763fd975dbc03ceb4133a36392a4dbca3952479ecdc7735
SHA512 8619b04680d0fb275b5f1fba5c3070378096298784baebd94509ce217e39ffc20fab590369d907b1a04cfbd46f842a40d07642f89a3388f8491160a741b90049

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000035

MD5 59a08ab770de65d921667116eed8863f
SHA1 6ea372f6d90eb4cf8a55efe62f30c6c0422d36c8
SHA256 03cc15e8ebac9102fb554d0938d511dfacc6a858b61d1c4a81fd3515c23237c6
SHA512 9d7abd83bfeb521429b1c2605633a4c86d54f6d774df347e7e5445bea7e8a250c102e177eeb100c84e5bc9dfd3734d7e5103a811816828b82d475d2447e32ad9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000034

MD5 798e03c0cd2084ecbf61d2f7743b7f03
SHA1 2d3278eefae01d6bae29decb9be3a3044037c7f3
SHA256 5b6f4d45d2a86f4323befe1562013bd3ec3472493654033efe9004306d49cc44
SHA512 39b79da52bc39894f7bed5fdc722bd69723d3f5691ba3625ce20fa065bbb7e0607910b46b9e93e6df45fab495e4d07d711f0b2cfa120310bd043d3e3b7c76302

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000036

MD5 2bbe412fad146096d0aced4342b42c23
SHA1 de5ab613b4daccf1ab7b4497c38b3725128518a7
SHA256 e73ceb1a47d2d4b53ed40210919b64fe0cdfbd05437fa3b4762a5170b35c2820
SHA512 1463b7c8acfff7cd154a53871a2ec34c0e8dfc4e93df6d63ec9b34385cc663f410c8bf13b366f58b87073f90719dbf98070e887213c5f3641d5ecbe09e59e767

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000046

MD5 00bd4556d9672009a7cce0eb5605fd1d
SHA1 e6aa062aa34cd745dbaa2b0fb851511a5ea734dc
SHA256 11e4340eefdc92053fa38149176a0c17f55472b8fd3897426a76050aedcb8621
SHA512 34f87481e0cfbab27750b392d885092bcd6e11796745b5ef7f39e9564b8d29d169cf8d72795e45745c366c18057d02120726951d2729c699bc60e6518499536e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000045

MD5 35fe37e08d59a3191e5937bbf348e528
SHA1 64555d7ba585935ad7031b1dcd85e32d665c5e19
SHA256 e0050b274222e7bbe0d963be219a27e4a47fddcf1a72da32f744a04eccf91615
SHA512 ef3b2acc746dc86ce4e9d075c133e0b65277c14c6347526e25ad5ede7a0f9403478a5fc6a2a19babea02012b5770de1b7484e68c1dec64502d362f8197289f93

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\717a7476ccaa65b4_0

MD5 b5baeb4228907634e6f3a90887aa2f65
SHA1 050009fb2a466e2dc0f321fd0700a913878dc6dc
SHA256 2c2755f3e0a52a66e96531a69307f5e6738602b6b8afecc62bf3d7564fd19521
SHA512 78c25d2b17b4db92ffa6d4add5edc1f3ace3e27bb60d8f8bfce5a3e6f8bf727e9f0ec8bce6719bc9ff8ab67f706554cbe57a3f0ed18202d93876e0a072d038fd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000060

MD5 7dbac6d608d3bc0f57be2efd51065d20
SHA1 3eacfad51474897bf1e8e57ffaa0cf18d86cc0be
SHA256 9ef35a1662655ac434e69a0228186be57f3e33e0009295e456ba3fa88bb2a5d5
SHA512 11769fe00d564aa85584eb1d568da436ff0b1bb334be9bd5c7f4d74e4fe1d331b6cfbe039a86200a2482e71e8b17dc7485a17e5596d62c4f90823c0394539a64

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\336a68eaaf209f48_0

MD5 b63f89c80adfe2ebd3737701f5854042
SHA1 37cb06f2a212cc041842719d47154f6777786e0f
SHA256 ab69be0110effdfbd3e92fe21255ab3b22ef3bfb4f694d601407a24891b83032
SHA512 2d84a7f1327d856f11793c723d9538f61a108f6addf2fc42b9f35a726438e6be21f1fb2ecddbe52c63e2983086b6db563efe18ece656fbd9ee04192a4a885415

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\da697940f1431678_0

MD5 d7755a1bba016389edb5f40718aa5e24
SHA1 cb97e88c2d0cf1f1bb650abd5e00d358ffd6047f
SHA256 a327d0aacecfc7338f0e1096ff5f12cc556b5bd33783f526213af416acdde532
SHA512 d3fd325bb264b91ba1c7c17f219dc6005fcbf53b02ad2f0b5f4e02568c5ff081d4ffa4e9365cde9a5a5fdc7b6e9b8dd7f605097e115eb87b1f50cefc0445b105

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1c1c8e2182894c5a_0

MD5 62457314349a082e27e37dbbc82473e4
SHA1 5e4a0140f745b656bd086f76eaa9dbb152d5f1df
SHA256 5eff503914cd91e1fe2fc25aa3a6427f78be13db1cd6a4d7c0d4940c990c23f3
SHA512 2ef863263eba4773487f4e8a7b0dda083be1e585f335df00dab985549c1f7aba2ca1d61bde157fb74270b7d77827b8cff0db9c94101f5b6c423f7214caf4b7d9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000078

MD5 9a56f4eb7af045f304951ceac625d949
SHA1 669b2ef84c7cdd419c9dc893899f429fead33109
SHA256 0b81403335bc3a5ad450bac7ab9c397da343fb3d41aec9cabbce5bef4e03727b
SHA512 91666500a50f49fbae49bef7b531ad9bb816db1ccb877f36313f4db5621c871f83488f24390524868d2160b865e4ca13d170568e9b2c410151b6d7a7d66d42d9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000070

MD5 2f57b73e2686c03231a5d27454d46559
SHA1 efc4cda5bd0d0f3780ee5d90ae34d64d0d91966f
SHA256 bfdfd4d136045e44f089d596cab9d5fe2542c7317b08795f6bdef3e7fecc11ae
SHA512 14f65ccb44a2f28897f68c9ef56e05e283fde636981409f97cd193f508821482e9d09d948fcfa01acbac1bf85e74fff554e4940f84899a7c45d57c2a9793e3f9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 1eacbe0d848c7b53edae021e02deea2f
SHA1 e7f257da6fe83d36c918fae0c0c69465eca38fc7
SHA256 1f753f76addc4084baddd4da5b9013ae66d868f53c9ec463581999075bb85393
SHA512 1979cdbde54414afb84263b6552d5d69303eb67bc8f1671842a71274e88b59332134e9c5b58c085014426033ebcb8d941ed36af964516e549511b8bdc11b8455

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 acfc53c173fffd261093df7bc02789df
SHA1 d95184f700c223ed240dd75d019fd24bd9f592ae
SHA256 ba30f46a964984998533d0c9ba888e0187d04668f6395c0088933355452ad215
SHA512 742aa47bb63e0119969d274b0851dea32bd27317f399273f560a393df552f3096030e938d9387f6b8370fe9aaabe5ccc188fbcebb519216d71103ae09b86909b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 52d793a40f05d30a210e60c7bc07a9d8
SHA1 c851bb3cb16e9b5a70ee3bb23e6211648661bdee
SHA256 e0209ebb5cb13431b0eb4e1c93ff6fb19bd6b210709828aff6e87d9754438a2c
SHA512 5a7bdacc87e56f148c29e84868cfadd67c1c7fbb7a4e1abee54de69b354a3eb4288c99daea0560cb2778d830b9ddb071fb956ba59085f1579dafad989c031b69

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 5aaf8b43260242a480e0f3cac60ecfc3
SHA1 ddd63d071b761ef88485518b704214d22efe28a8
SHA256 f1f9fe8058ecee7d6d2232be0e6b274b227074cbbfd43757ab734bbb4d82614e
SHA512 2871ae520fa4de69690236d742cd58f61a771801eaecc5993e38073413782858353157bb0cd2f0015b82a2e807ffb1b4691b0ca2fe2289b8094377fc979b6f5b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 acce7b3bec27480cfa9ca6f5fd6b074e
SHA1 0815be6acb1176594c0875a3c24173d2845c1360
SHA256 c305355efa7efb9d9e0abc64a20283fb29dc27a0459ea0cb5fcb5ad8813cfa36
SHA512 6554c17bbdced0e2383f3a3e2214abcf74b9d8fca9529993eb965d53f59407cce4503cd83913fd355a111746071ebb73f443ed7f27efbad42daa0f83c9a70b5d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 5c4d36d565acfc17307042de43d02c65
SHA1 2def0f614f6eab77581329e77fc8e382ba5abbf5
SHA256 dc1fab241ce4414ced26cb297b06448edb89425b55f541e7abc431854b5cfe63
SHA512 9f48fa6c8598efb019cd1d6f2ed8377adae4684047402fe52b10e9d1e7b454a40ab73fb6c8244c1e1851220d43eb00be10d3c52d02fee1607c2b2f42cde82f56

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 bb747592e0179b11b8f305942f7b1ae2
SHA1 41b3281cffde1569555f3a1e28a3ff3aebc2df86
SHA256 48670e7db3caacca97c7d0f367667da698a0a41520a6ecc3440b95f4332a492a
SHA512 a8777c699d3f8f43af5986109afab6c4548b6cc00e696cfa0f86e302e1aeeed3e3eda6369cf7a33810649ebba3355e36bec711f85275c8aab10fa69baa949f47

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003b

MD5 0fec7212d075ca9b3ff8ed98005af109
SHA1 817ed854aeb9de3dcfa6f3609823e312cdb62d9d
SHA256 c0e7038ea936eba719ed92e6f107d917ec8110fd567c07060d0a5ed40510610d
SHA512 a11b7da83c684cee6ad34843af24085072956f5f4f82e383c3b053e8533914268508e90189049f115e8f1ace7becef8b49d36371c5bb71f222adb5b021fe205c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000039

MD5 1b2731006f2b2597b02859e501bc2d4c
SHA1 118d27a703cef3fb083593a56bbc93e62420f30a
SHA256 59dc184cbc1a318493460d1d78999cfdaaaac9a457b5a3a02c2567dfa17314bd
SHA512 f7452f91afe2fbfcb04f80dc7b051d874224de8790bbc53858678332a6b49f7295a15989a587811e1e8fb58a38625ec3e15657d88a367fd50d5b201d7abbe90c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003f

MD5 a762fb5a64dec4556d980f51ff3060c9
SHA1 6ac0b291cbbd8819e9a922c9c5228f76ad029983
SHA256 cfbdf62609fb4493b45b6b7a9a13c5357ab5e7447c606d9fd707dbca46359a54
SHA512 23169bb323a788ccdb915dac2a8d8c58b018c40941f2c7b10a3814a68b42ad3694d07d23e2eef31d77a7c16da355c98d796b94f82b8f352aa4825ec0c3e08b55

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003e

MD5 a66809c907d9c6b39e564bc1b819abd0
SHA1 713ae0756ec2a84ab7a9b5c5a3107f908e7ce392
SHA256 c67c54cc8ef06b9ac01e7ac14fb99f14173597875739df2fc289693e60820d04
SHA512 1448706a02a34958176923501e8ffacb410cbb91c0509afcb368b5fead7279af77303100bd389712b125c9a7aaa4b675cea41848578d13e79dda9670a5084201

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f94ac681a8d1f691_0

MD5 581d70226da1494c3bbc8bb48a103cdc
SHA1 5a4e06b3b6582dfdaff32946d163378c5031bc81
SHA256 fb64f35e050a8de79e4127b6631722892b08675782a0b7a3a07b1587f525cb40
SHA512 dedcc2e17e42d9e96b4d81e81bb05762786f99de12fec75ecf43de77d87edaa93bb12d817e567995daa02aca5147f262c4c958ebd71b40624a2b64ccb6d565d7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005f

MD5 4e0d4ae80a939c86e085e6d6ecfb58dd
SHA1 4a6ba305dca810ba951846020b2520e1d51ad846
SHA256 3ba68677bd09797815c1bc4e0b47d2265ca4e0da771246f84b748d4235096dc6
SHA512 de1f5365ee2160e5a6a96f8a0c2eadbccfeb918cb521d2cba8559ec29b4bcc5f1acdc964c594073a042dd4097d6697b8c95686a4904cc9831ba762ef3078f3bc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000061

MD5 d0b0bc4f725f8e2c71589dc3208c484d
SHA1 a78690e847121f7ddc62ca6582b3b9cfd1f03d3a
SHA256 7ea2891f6c8b1c4705277e24a457d0b3e0157b1e55e1193910acb946a40ef71f
SHA512 1a946d7fd4ac99213c7b6f8ab77940da982e1b51e318a42f87cc179298f32f3aac6081a13e3a0d59cd9d3a8d1e444069ee0cb62380464e188be7051010108f48

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000044

MD5 8b0a77b5c810189216e299034dd462ad
SHA1 06c72cb11a0e4c1aaa14b90a9f9d9e1ca317d5f6
SHA256 84a5704540c96c724c55db0993f36b641590765b33d6b082160f0acf29b5e614
SHA512 31885240177e0d9b2ba3d4957c83b4507e6219b2f185fa0319b715dc0294607f8cac68be0c207b70870b6499b479ff4fb3db35c904b7455d2911711927137747

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000068

MD5 0bc5b0d77cce456627c07c5561dbcffa
SHA1 8b03d7a70920eb5980f86c3bacccc0747c213e17
SHA256 c249202f1b76801b76a837b6cd725c976715c51ca91c83b8219a45e1059a1e41
SHA512 e6a4b8a4db371ba473a1ec430288280ecf02044a15c6966cc8b3293b247251861fa9e0d070af1fe4ac3c65a034887b134fc5007d8a23e167ce8a6702812e13eb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00006b

MD5 988384243d7bc99d24292f83fa6c9dd8
SHA1 d1ed74b6b7c0a59fa6d6099e4f06d9dbb8e07233
SHA256 1d32ec6cca3b06e8d6713df23abe6c034f0f0ef780e13a5563c8ed34c0386543
SHA512 a28c4260fe6e6e028e7eb0cd7fd76a05e714a01e70e26a83d5bf7d373096fd7854339602ad0b69207ccdae68e181ff92b2d4eb6b551ec807e091344272789a65

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004a

MD5 25d62807e0b01084ea0b87624599c54b
SHA1 c3adecf8f4b132c28e438fa54534af0647d545f8
SHA256 de2412a6e29cf9968f4d94e590a938c618f6ac8c3887173368924aea9def77fa
SHA512 4dfb4fae6c36b1ee20cc67e1bee676868b11e9ae2da6faeba2b5aa680dbf0021ea2bd6eadfa8d618a81aba1c03fb68d6997ee286a6972a07694dd1433a74dfe0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004c

MD5 26c0606ba04df016746e149f4969cf67
SHA1 bf0dbfb62908256767b98d64236d54c103e6c568
SHA256 c7ac1c1e6a217d8ebd9d4a9d5aa8f12ee5298b8edabc21e94045c8b594003d55
SHA512 cd98eec3ad64e0c26fc925131cd01bc471ad1a21577a5663f24eb40b9aa7e8a81a83fec3270d52572ea261d64fb1e4893a449d880aae2f438955d5b66907dcfc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00006c

MD5 8655d20bbcc8cdbfab17b6be6cf55df3
SHA1 90edbfa9a7dabb185487b4774076f82eb6412270
SHA256 e7af9d60d875eb1c1b1037bbbfdec41fcb096d0ebcf98a48717ad8b07906ced6
SHA512 47308de25bd7e4ca27f59a2ae681ba64393fe4070e730c1f00c4053bac956a9b4f7c0763c04145bc50a5f91c12a0bf80bdd4b03eecc2036cd56b2db31494cbaf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00006d

MD5 6d5bbe47bbb0003b62d890c94825b7a8
SHA1 30f546f4ee2e6285462360355942c5898ff0bf1c
SHA256 1b150c409df2cca1e55ffc6e55b649980f9a282bb6b25da6186d5ed55741141b
SHA512 8a6fa56fb7cef243e324a7e0d7aa12fa885f36f1ded48a561fd7a79e7b97e30a7941851b0065acf4f75cb66e1c0fcbe2fe3486d1b72c878862848604310d24e8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00009b

MD5 cb4447366bf49c5f14f12fd1109565c3
SHA1 16315aa50988cd24ac8d812579af595d94dab5ca
SHA256 e03e04c8dd9c8b588b0706e3fdd0c7fc5b1ac459749e19f3983cf1cb65acde73
SHA512 015ac190b2f649e7bc4ad122696c7670f9529b513dac6355e2eea72d35f1d3565bb8ec56693ad684a4981007a8bf434d384acbc348606b80a4cf901984fe8f79

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00009d

MD5 e24ddf723aa7a0d15670c5c42cd8c030
SHA1 f833d3588fd66515334dbc24ed9153f301d2c641
SHA256 73b0266ec460b09a5503d456d2e23f5515cdb01c871a4c66c06be03829f60098
SHA512 5982caefed9fa6d6436522a70be77181af3de2f4981786b1358042e5275882892509419dbf79b94e3a81aacf63825fe39653ddd6f8ba2b48d507372e53bad297

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00009f

MD5 bd69a5f63e42b73ca726e1a7531a8bb6
SHA1 83a970a8a7198384b5893dd7a01dd3cf031e9158
SHA256 c1766cbdadcf784f8fec2601df3f12e62a3c09bd3fd03e4bf5d8a494bed96d3e
SHA512 1397c0c5017cecbb1d1a29cb4ad09b7f872a9257743198e83ae2f1aaf05a2e8f42fb3c816d71c037f531613ddc68f1f761eb15bf326c2367259a5cef75273054

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00009e

MD5 f273cf9b180cc0c8bdd5e5326aee69fa
SHA1 9a6d0428d795deb92529147a5cd06fd2b37b645e
SHA256 2ea8f273cf8aaf431813d3a5531ae020dbdb24824f80fc0b84889b517202c0a2
SHA512 c1d4f66016c496724e1cb8f5fb165e32a0e910bc40db76cc79431929fc2fe0323019a9cda5946cc57791a0ecf604bb9272e2b76903c1db36c49a202455bd7ad8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 1a4c0b6bc13a3f7fd906a082d4fcefb2
SHA1 de0ccfc5182cd1dcba8d21dcac2d1076502d9b11
SHA256 26b6a5b5fd633cf08ec2e37cdbdbeda6c19c5779157f1d489117da782d9a33d0
SHA512 ddc501574cfe106d0a80fd9f361f0d46d125c793f66de1b59c97ec742131f42bffb655aedf350e4add34797d88b4770066b60a08a144ea633d9d22685467094d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b93a3a375e4497f4419c7b06b8b16d92
SHA1 955b7194cced00dd4df5a7c5ecf7a046a5cc3587
SHA256 6d4b7327fb32c21dea2f5c1c78b4b180afcfccb5f745ead571c5c9affbb2eeae
SHA512 daad044c8785bea0a6e8b3cf3a2ce7c49ae6d2559c9c36f4f2308f1bdf4ea3855557d7e52f081234f0587b0c0ce603e0dcf0a522ce09fc127d7f45a837329aa1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 73baf699685b2d83d393db67d967b4aa
SHA1 400c12ed4e1e8e71f8566e22ba22cb2f6c5515ce
SHA256 7321b8508c3fda29467b6c1c0cf52b29aa8fed263065a67d65980de4f4406556
SHA512 ce9a4f68593c4bfedec529736c9d8e96446da7f6da78040ecacf844acb66e0d3d0c9577511f6fc0aa0d580df7b94842d127c90c38cdc5e3f7587672e94cc38d6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000a0

MD5 1c0ee00dee0baefbc34211d62ce0bb38
SHA1 ac6b2ac2ce0fc07a3058dc6f99ea0ea6944ec524
SHA256 0d80043ceef0bf83890c956dd1f725b9075c3b33b1569efbf64e6bb298118328
SHA512 663aea1e708ef03e878d973d57b294235c28546caf8d917f61d663c6cfc10cd1da013b72703e6c25ca62550b3facc22bf031e435db1ed56d074a3c2f7e36cba2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4c307b02b4dcc58c_0

MD5 01078d934674be5a47389a29767d78ce
SHA1 d2832603ea4cec322425541d4dd50a7dbc711c41
SHA256 253b47a2c8cb9ef0d1e4a42df22a6c673a1bb3ea81a18b54783845d9b299eb6d
SHA512 b9c8d822152182b505c5c6faa60ca02d7a5bc8c075682621bbe57e07679a7fc81cbf79d4de2237324f0d522680204d707311c54c83680e72b27991b096801c6c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005d

MD5 b432567bbec60b652451d847943b2d7c
SHA1 06486576cf390fb17124b12c027246e8151a3c24
SHA256 9c326f24b8c2f51b3ee07b466e4b7a5d0c62bd0ff52cb98966ff12c678a58412
SHA512 dd3f8b599f095d7a2a3d2fa9e778ab8ad5aa87053b97deadc85e0b4230b93048df92a620bfdb76f1af5e1253be1fefeccc2581924f7a4c2eba535d3be4f4a7ed

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005c

MD5 1947626e7cbdf58f2e7c01e52c9d0333
SHA1 37ec88f71d44075f2d3eb3952af680f2f4657ac1
SHA256 cc54732c39d1ec6f90d81cf3b78e3fa4bdeb1f991042921c3ceb5a3653f55bee
SHA512 583c590dc253e6263fbf89e031a88efb95db2de26ea7da97ab27405c6c6b4b523e265adbf3dd9f12ac9a0bf33e9b14cea5d29a7aee7215e3199dcb2949559ba3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000a2

MD5 5a8b27f3691d85c068cdbbc77609b76d
SHA1 e317ce323ef4c6c083d2084202125ff9b7298570
SHA256 e89dff26177b26106b2266d3d26bf584a5ef257b8e892efa3977d6d4f8b5761c
SHA512 4cc93dbea1784acf65c881000fdfad9661790d6de0da5db5d0b8fe35f4b1ffdd2937a9a3e6e72174184724b8cf144c1724d0022f96c7335a9ab164e7f04c6b3b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2bfde39962961371_0

MD5 b9214cd365b4a4f70206b5df3b3ad239
SHA1 5aaced846bedd2e107e83dcc6ab8385c40b3a522
SHA256 4dc35d08e15f308013cc06b9d5cd5cf60bea570c32b88a5f16c9d5be42c3afef
SHA512 77f974a150be7b009db681f6701609fbcf8c14f12deba10de7be85c7f88857b24313bf09aca33b0603d75aebb4c6b28c4ef2819e4d223c72d5d2c14c15a4180c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000064

MD5 3bd2d81a97b023332b83f9079705ade6
SHA1 c10073fdd07723ec31c8da3eab06448f3779dc62
SHA256 5f18d599b4536774896e04dbf5251a418f5955e4de7ed9caac42f6c50f13f6cc
SHA512 98b4bb697c10d662823f0d0dd2c0993aa3abc395dc5e42037a870ab2044c6aad388f71a1f0ce79665a70d9acacf5025a22e567e148ed2727245eab8ec8232af5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000063

MD5 e892d9d0efccb0e93324e4d342425d45
SHA1 69954fe978ac6890d8812145eee5cf151560a3c0
SHA256 1ec5d201ca7e5e02cebcf5cbf549bd33c26ff7a3842fd8f7833ab0268a71d6b9
SHA512 6cf86515d89ca9e4bb0c683105902672837e639011f3b94120afe7d13799af155d003e47343047455eab93b3d631950f98acd514ffd7a8408a24b718bf6ee6d0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000066

MD5 d515d6bc712ab2550aa6d7131c8383ab
SHA1 0af98d7d426d6d6513dbc7a9be5e46d56449ef68
SHA256 2a8b445262abbb4ba7712e0877acb65efa322dd8bbecf8cf18cf5ac082bc66f6
SHA512 9bb81b56b85e5af6e75dc513ae3c0d98ef91114efb370da5b132b687de38f2d78a3c799b5f5179e8179c2ef147ac41e11f98449bd79e4c22ce9ec5e49dca294c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00006a

MD5 eef84d4a7321b73260b41707db98756f
SHA1 cd3b4f9aa11f8452a1401de8b20644679b9a89f7
SHA256 13340dfc25a96d245772fb41c7aa01c32723b80d8dd8240864b747610d2ff745
SHA512 dcfb017ba7472dd9956c958053129f71e4f384bfc968210dd9f2be3dd9028ea2a6288e887595b970d646fffe0b7e90f4ee9f00859842bd6423c6c4a8d82df706

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 cb8aeb6fb79e064769001688f61cbc22
SHA1 b207a1db95eef80b7178b74013b3c7fa7b667232
SHA256 6c2687e992b3fd82b894bf4f87fb09bea0f0f13ed1259a8468c3e233716406dc
SHA512 6770f68ca47eea18b4f7fab156608b24077982f0fb95d5a5e6eb85ee6421776c64b368f3715fdd7c8db63ed13863bf87e8318b42b8c8d06bc2eb09e7648a6d84

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 4aa5de09e7bd10a22f09f220f2e4c396
SHA1 a28ab7bf13e571f04551c502ce6fad6feb44d33f
SHA256 37b953fa3d02bd8e1e79658f758a78598f877862278646fa80a2c49b31d8e26a
SHA512 bc8bcf653f41c575d8f6a9df6a29ee95de1a963babd4327410f5189827ed5501ac0824d187a51ee2f37a1ba020e927255d8c43d4cbe01f19524a6c01a3d7495f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 12009e1777444e8024d8d56f8db90749
SHA1 1273920dbeb13a134d0e103ccac77088177e8a22
SHA256 e126e6537c642c34f81a02b270fab8d7e466b7233f1552b284b7ac776b86d4e6
SHA512 973a068eaef9e20a8335b27b89db0a2bda83d7f16183557ba3e97c66f07d89352eaa459bdd8c8a3aa3459b69153c68ad3bcc988f89823b897aa193419d61a5da

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 beaed2d2782c891fb243684a1426b5e6
SHA1 6c22318172940607e180fdb5ae41f69376c565d2
SHA256 c2b3484c1cbd491be2351a55b535275d031b434b67187b484886b09e2b944f61
SHA512 ddcb3dffc563231cd1291ac89a43f8aae5538c82272981a9726af6064cc1dc4d26cc25c51f495811b2b2fa4afd0ced74cac87e6875fb87b6908aca66a0203199

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\83ed70960e82c77a_0

MD5 b03d4570d320b3c58f5eafecd508ed87
SHA1 f0593422f3ae4649552050a4b8bffc4acfcb0906
SHA256 5eae0d6680752c602bc3026baf77660b6796fb9d8636b58ac4f59706d41ea0d4
SHA512 e9edcf1b9ae7bbedbcf24c1eedb23ad780e8be02361a2911126b90acaaa05cae8f916e73e3beded3450aa122f24256fe73fd2944e991bb50e43143dedf01f580

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 6c70401c859c1eb586e73cbd585eda7c
SHA1 dd4808c45ccfcc42b378c079c3ff26bb36407eb3
SHA256 202d8aa82ea2fd82cba8fb0174c5c5046a8c300fbab9cd8b19bd947396596276
SHA512 901d18967a3478ec01359d2fac8aab47f188baf0b36bde1c2d2e0935672b31404f90fbedb030969f19b0d9ef5ca57e3379a94e3e9d3b66573b47d7c51e0d50ee

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 6a6d5fb46f1f442db731b701d7cfac3a
SHA1 449a54beb1f1c2293aa7a80aaab7411d262f7585
SHA256 498822d8b1744a35fa4dcd45db5552f0283526ef9badef147b080040edcf1923
SHA512 e4afc158035e651257c5cb12800be7ee35d9ec84c5a01175a658a64eaef06862952e059148c70e1c0b59c2c4f27fc8cf8b470a21e63ec0e956f29c2f5a372bbd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 6cc57756ec2c7826b58e045f842ed53c
SHA1 5ea546a9845b3edc0ed98de5fb0dc0183a1cb9b3
SHA256 e3faf774d9ed0865115132bf67b3413798dac5c7fcbd0f82af16ba2d30cbf505
SHA512 9091d5c819aaaa8373a72a246d9e1039cc014ceb9c21f4c0d853e6813d93ad4e76a6fc4d23aa7ee4137011cb77486b0fe373110dd934d70931910643221abcdf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 a287accacd8e2ea75e002ef886f62220
SHA1 1a0128b6400d6f854d52d5cda5525953f9324310
SHA256 8e06aeda847366d330dcb4b601eb1358ec0ee6da8197af97f7e1e18571294c35
SHA512 e68cfd60bb54d72990a5922af4d791e36258863ff5c3a57c1627021e6949001f208bf18c6eaec2cc426a031c0446966cf86f685c94fbd8e20dedebf5327ff648

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000b5

MD5 59ee96aea4061c8a38d2506c4805354c
SHA1 273902cf69f0ac50ad5c654fa14ca8ddc295b99f
SHA256 7c8672db679b72c70317a6edbf0c2311ed3653e1d911376cf232e334ec7eaf4f
SHA512 6ddc4427481f02ee4f3246384671ff8d41d856d8b0e281c651431a2377b16991c5bc3a3fafb5c1f80ccb05f9219cf201f9ec547286940584c0a671dcfbfefa3a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 edd417dc92a9869321cc7ce4952c2e56
SHA1 cf7231eaddb8ebfce71866d665453287923ddcd1
SHA256 bccd2f489bf1ecf1117f6904938bff56dd0836e5b453a6f36f463bf2c366ac99
SHA512 08f651dfb5fefe85af3fed2e00508c98c22fe7e78334250e0ed61e1a0c14d65fd16de76c13016cb44f5a2aed2786a879be7ee7e42dafaf82d101ac0132d8786b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9827e82e784cfdbc1ab51ad7915178ed
SHA1 f2161f6d4eb586513d3d37ef9e275eb79c1b825c
SHA256 d99d381fe58ac8d0986acff462ac57e8164916d0bc4206ccccdcfbef0e63fe7f
SHA512 e8d7a8162c1f83d36a14289caeda47f06cf42e7e98cb9c9297a894d2e42f01c69f8714a6eaa54270d4139bb1a2ec856196cd979c1e47000e43f0cc9da609c382

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 97ae4846a4e32e447862a17e4ac1eb7b
SHA1 64ecf3e83db5bc9ba48ec508c6a48eceb67d713c
SHA256 4aecdacf529597af7b73887899b7fc077430bfdadad1a981d1f43d1a2b371207
SHA512 bb969872ce474bb8742cce1c6a32b0110c0fb1f1669b03a2f4d613b40b7ed8543fb4df512a367ee68163393dc23d17bd58da486ae29b4a5ce270e89fa0995c1b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000aa

MD5 4ed2fe26926a9ab677e72e7ff2c59ffc
SHA1 646d70e443bac157f4201341a63cb25f961328e1
SHA256 776bcd4bdea0fb822f8c2bc067f4fffc01eba58d6d1edc5156c643271d09edbe
SHA512 f5301b3091e6e0a4880cae60aa47e3929b0ab6e849e546d36125ba7a53ccbb82028538fd29e05938fa9ab34e6a8a69e33e74e0851939d7f5d69c09f4bfa4b52c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000ab

MD5 01d5892e6e243b52998310c2925b9f3a
SHA1 58180151b6a6ee4af73583a214b68efb9e8844d4
SHA256 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
SHA512 de6ca9d539326c1d63a79e90a87d6a69676fc77a2955050b4c5299fab12b87af63c3d7f0789d10f4be214e5c58d6271106a82944d276d5ca361b6d01f7a9f319

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 cb0298a23cb39e3e47a422eac69013fb
SHA1 a278032f9c2b9511603e6056cecd8c323a0dc8ce
SHA256 9aeaeca44559b156b1765d5a2304b799374d7401193329b5ef7e61d4e2a67bfe
SHA512 229559296422b3abd604d23ad2ea83c010865c2d692c9d096bb55d6426c6f30d59874eb69fdc999fbba8cf4ac7c960530fef23c294859fbd7226add037dca5f6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003c

MD5 3051c1e179d84292d3f84a1a0a112c80
SHA1 c11a63236373abfe574f2935a0e7024688b71ccb
SHA256 992cbdc768319cbd64c1ec740134deccbb990d29d7dccd5ecd5c49672fa98ea3
SHA512 df64e0f8c59b50bcffb523b6eab8fabf5f0c5c3d1abbfc6aa4831b4f6ce008320c66121dcedd124533867a9d5de83c424c5e9390bf0a95c8e641af6de74dabff

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003d

MD5 68f0a51fa86985999964ee43de12cdd5
SHA1 bbfc7666be00c560b7394fa0b82b864237a99d8c
SHA256 f230c691e1525fac0191e2f4a1db36046306eb7d19808b7bf8227b7ed75e5a0f
SHA512 3049b9bd4160bfa702f2e2b6c1714c960d2c422e3481d3b6dd7006e65aa5075eed1dc9b8a2337e0501e9a7780a38718d298b2415cf30ec9e115a9360df5fa2a7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000d6

MD5 d79b35ccf8e6af6714eb612714349097
SHA1 eb3ccc9ed29830df42f3fd129951cb8b791aaf98
SHA256 c8459799169b81fdab64d028a9ebb058ea2d0ad5feb33a11f6a45a54a5ccc365
SHA512 f4be1c1e192a700139d7cff5059af81c0234ed5f032796036a1a4879b032ce4eedd16a121bbf776f17bc84a0012846f467ad48b46db4008841c25b779c7d8f5a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 737be45cf952ae31664d83e1eb92e5b8
SHA1 2a80c35644fa9ae46f422b8f83e3877d5bedc6ba
SHA256 4b154f94d14e8007a715902f25594100473d01617f44f07f99a03e799b825467
SHA512 8dd6c6bfc5c677aad969fd5102d544ba56c495ffc23427732ffeb932be95194b884e1f47beeddba0cd89afb58986ae3e75707e72815deb9a5092d2189a7c4a3b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 ab8d1cdb9546cf1ba5f2f243a6b77f75
SHA1 3ab85dff4798284aac889bad870bd68d125d7086
SHA256 24e296a15206c37353547889d97216e2933ba0cf31cbc7d124208e2ac7d0dbc8
SHA512 39b4979186ddbb1f3f1d720901ed78937de8ce6324f4805f1a06f806686f401361faf83fffe2fbf2e7dd3b32b1882c88dc8bec75e0f267b5782078c50502f887

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000d5

MD5 ca9e4686e278b752e1dec522d6830b1f
SHA1 1129a37b84ee4708492f51323c90804bb0dfed64
SHA256 b36086821f07e11041fc44b05d2cafe3fb756633e72b07da453c28bd4735ed26
SHA512 600e5d6e1df68423976b1dcfa99e56cb8b8f5cd008d52482fefb086546256a9822025d75f5b286996b19ee1c7cd254f476abf4de0cf8c6205d9f7d5e49b80671

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 494e732f023f674e16d4bbafbbd0fb4d
SHA1 9d0b54dc2390dc2c94f148af81a03804958a9878
SHA256 f9b0054067fa5160f52c6790a041b886b6c46dc2ea2fdcdbbbc5196a90890fd9
SHA512 8f2916d999784ca4fcfb3dce1f6596798053d6c30e6e40ff9eec408f3a0302949002d2b2ad2dbb2f83190729f1fd04b7b36e68daaae3be2f65504eef7fba5f94

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 94310fb9ed3801e3ad8bf121c97d8e60
SHA1 728cecdd43edbc24e54926d02864a0f02dd1f706
SHA256 f3f1db460bdcf6ff47396d5db52aa19b24cb4dccb25493e30453f63bc0ad8fa1
SHA512 8957b32ff55316d0c1d2d8609abbaee3e8dc79234c66d37702fc19fab911546591e870d244a4112107c52002a71790e80c9d351dd5717276b60bc4989893b77c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe608532.TMP

MD5 b06516514c5468d10472812832015d8f
SHA1 b5270b4a9cc40b6c589e5d0b35e925fb6c32dff7
SHA256 76c232d818f802a8e398dc5288c9e52fcd5af60977485ab38393d9a30d4feea3
SHA512 8fc7e34a9f228d4a5a0ba4da6f9204b89add5db6d26e9dd119c044dd985e58c9c0f421c7358c153c855276513b3f2f3399e741e4ef70a4228e74e3f821216ca2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 8e003a48c5e6ce08674ddb17d6b7d484
SHA1 6f7f4ed60e4ea353832c00810fd379bd87a5b0bc
SHA256 8c8b70170c2e8da1df76ffb5f16f8f788da7dc0374509f938d0ea38c85db2951
SHA512 e286abe1dd88685c38bda9bdc9ce5fa61a0765c345810975f79ad2c6b28749b2904eef47cf2035c0693b46bff6dc109498dea262e3e02f55b3a42db36a201b4a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a2c40fa7a1455bb4_0

MD5 bcdb749eaedd607a78ac577c85638ffa
SHA1 9ff37d2fbfd893df4a2515986256d785611a0560
SHA256 511487959b80284eebb7e58e533dab956774208e9ead8d09cf98df15f77e8746
SHA512 664784e6a3b96eb3d93f415be1cbfbfffcbd2e624fc05ec7fd7098d5a77a0815cb5610bcdf60a7452f91a4e551aba032385e681e6682be1389235ac1ed4276e9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 aaedefa62547f5825cb6c89e41692c17
SHA1 ff509bfb8ac9c3887118e0cce2a293d9a2a44700
SHA256 a0f28755cec1cd332728ab17c49610206841408f73ab2ef468c32570a23bf8f6
SHA512 be7e14a1597d1620093a5c640f43c19b7566c2e658bdd7b83021b880d5ef3c190a0eaa78e7af6e5a45423d5ae0e0ec2f3b09daa21996f15741404b7195ad577b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000d7

MD5 6b5c5bc3ac6e12eaa80c654e675f72df
SHA1 9e7124ce24650bc44dc734b5dc4356a245763845
SHA256 d1d3f1ebec67cc7dc38ae8a3d46a48f76f39755bf7d78eb1d5f20e0608c40b81
SHA512 66bd618ca40261040b17d36e6ad6611d8180984fd7120ccda0dfe26d18b786dbf018a93576ebafe00d3ce86d1476589c7af314d1d608b843e502cb481a561348

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 1576e34b5d7d1a242178237119e4dad5
SHA1 0cf07c89393bae7086f94058241d0b3b6985a6b4
SHA256 4d29fd69af28849990f4ec9083e7f4f9dbead034a66da8e6c6b0b65a4d1e1840
SHA512 3a8ada8c1ac1cfb94b3e25970bbd770dfb43d8cce2d99d91afbce7ea6c7ebec511a935747f742724df0b01695974b291ef342f5d5ed2c9e91b2a58afe6090cd2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\JumpListIconsRecentClosed\b9124cb6-96de-4358-9aac-a95539c31123.tmp

MD5 a36e9e4606a1a5ee16ea8104cf1a5c7b
SHA1 e9fdbd0d5e058441e42da0a9443c10b08b4501a1
SHA256 226522107a0e534d988a5cdff6b410f66d4f26b03ce28ea915041920f7f4047b
SHA512 12ed66f9f12dcbac9bdfa98c5ec58ee6d6abe8327cde11fdde47e838ad0dfc21ae37f48d0bea85d6aa126553e560e2de0433151f6a5d2dd3223850423f931ce7

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 049725893fbf17c5761b06e54ac4f73b
SHA1 37042767adcd2155f644f9ba441d4ba3f57499cf
SHA256 c315a3ece8944bec0a8d0924c05d7c3f102294b6c91688ea3c7b22bbf0ed155c
SHA512 4fb1cf0fe4ee245f74fc238368aa02f97a05800954449402c56b5fc0c79fc870a2a001e1b44c96e6cff18187ec0bcef218992475726c3a951547a26242b532a7

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 db7a5a994fe28115ff2553fb3e288b46
SHA1 19b1121f127a04b762e7df8dcfc088922bfd63fd
SHA256 a174b0bcd4d0f59441d4b0834969a092cf630cd190c07c0bb3427b5c231cbebd
SHA512 2e0a6c23f55397017b986fec678caf818b2c591a1b90b709ce6951dc53e1e7a3e2d2f57099ea10c280df6b14f4a0368bde011785936c528e69919716cc28d528

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 9024c2a72deb83b05bbd6ab5483345c3
SHA1 d41e7789022dc06b92ac8f177f38036d88acd141
SHA256 b65926a7e921826f0b172a070c98ef5a20a6e4489b717b86fa9415d9631dbd03
SHA512 e07dbd3825c8227ed7dff8795b421691746bc24e2923ead60ffa5893d3a636c3e7b05f3d65d824b6c3189e68812c2ce07b270e51cef9c1440238d5b8416e1624

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 3cde1c9275b02409783456cf6369fd35
SHA1 889b1c34ddefd3b53304e776881ac8c1b896dc9d
SHA256 1a5bb7e2161b2629faed17da6d49e0d6230e2bbe0f7664509870f1ee51561e60
SHA512 bb41c827fd3fcb70b8600a7cb0790b365a6f0fc5d5bacc5a14818792b23771da09a1e5b8d98bab1445b17459fe42e59ee75d38795c5f1d89ce714f8f33d64cae

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 af2d5dab1c93805e2f02409e62f31647
SHA1 c911c82f2089a51847374d47908db5931d5cbacb
SHA256 3509508d3d38d5f1dab07a851bc196cd7f579d76a57b274b79a51f537cc30fe6
SHA512 653855acf0ca82f963c0fc1e35dfab5515fe4a1d981936bf733e36786cf8832cc1ad2652286b8474b09c3243ebeba798ed6b6bb0ee9bdca0287680ca6084c31e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 e2dca7ddc7be92e47ac91657f0909521
SHA1 43b71641240db07a4fdcfcb2a77fb4f3056d6f6c
SHA256 8ff06c30b1da2758bdd6c35644f9b1905b9d5b92667cb80022e6fc67d265c925
SHA512 d59507f114dc736849e6cb18c72d424478210f618aa6253d31da3d9cd705a02baaf008caa1d0c3958df41e0e449a902a7f0b084087654fdeb83757e071e4d1f7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 03c8573d089d9dc06adbddf2c18191cf
SHA1 3806fd8f6914e1ae17e22ccadebe626dd3cdcd65
SHA256 7ab4d5ec12edbd9a141d64d740135f89019a80aa7eac99fb2f74b6372eb1c5b1
SHA512 57418cac0f897bf95364a674034160681821d4e573acf6d5b07f1fc0f663e690a9592c2a82419ffb530eb8197e3ee5152d7d3f2cecb7cdd9c07485cf3008cdd7

C:\Users\Admin\Downloads\Unconfirmed 16974.crdownload

MD5 ad42d271e4b7d5c14c179c6cbe559bef
SHA1 3cf564330231eedce6458836b03e3c129c799b47
SHA256 ae8abf10e555cee9769abea0e2d3379b11bc6a817f75a0b6038d294fa3d6a136
SHA512 8f723c3f79c32bac1f823b5c01b535d439dd52c841d84a178634c897f630e53fe520b5e5c96061a5a84eed3878605b45322187f135784ab98906f8221c239310

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f0b4add974ef6254e3975eee8399e141
SHA1 2f14475c2cdb9ab46ccac697d98ce3697391c046
SHA256 ffda6a4391b448b18f6ee6b656bf4ca5e7224de7f06f1b1e614070a9891c2b76
SHA512 0f1755a34ca340c4680fc9056d9a4be78c15e5947f2e5b4eb6f1446ac1cd40cc2104fffaef7ab8be9c4e281b7dc66a14f1ffed8ff6f6fd0cef0e2cec3cd4180d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 5997e214514fad2a8ea6107afa6ca634
SHA1 2ed2925115b20813f04bb5d45410665c4b12a90b
SHA256 bddb029b3a0c999d8f51800497a5bd03bd5e060ab514d5bee9dbfb767489f3b8
SHA512 aecc6ec92373c5317837f61f83143d4368a2425a2f89464d3f8abdc0db754f316551043cf8e7fdc3eace7189b4335acd14e5556135181255c5a605f3abdaeba3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f3caa9942cef72f3d360428c1a606947
SHA1 c9ae857c22285240f648dc81bdc3ce52660527a3
SHA256 c5e3fe7f8bf67e67714752d4a31b3876a9f3bea19270839b90d179ffbc7850af
SHA512 87f93c020a1989d3e92911d0d1d5705d4280dfbe1fdaf1ab7a67b4309426193fbf580050325d4499d081169826b8cfabed08bf540af37beb4fa150b7d8ed235f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 5707caf01e1755829e7bb35b2299f8aa
SHA1 4d6633ae5411e92df0bbe7d215aea084acdd60bd
SHA256 a6d0c60398a6b93a98f6a6f80cd58a7acb0ba040e85f73fd57f3a63abdd45888
SHA512 f55147410c9c78921730f7c2fad08e6ccb34abd0927a160ee2ffbb4ac4345c87f080e006abcc15039ce0b4db3a77486fe97e91bceaccd1496fee654917d8b8d8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 5da064826d27e78345a2d446648e0cf1
SHA1 258287e93271ca10c67f8c0c7a423aefb6d02843
SHA256 8d1e8da46cbb5e44cb7dc17898f132cc3c7cb1cce3f4e2c0517caaeb7863504d
SHA512 68c8718dca962dab8ed2c62a9d69027c0256fcef4ea55157e79091f1210a7f7588b4717d9cd5cc6f10568917acd39166dc9916656f01b9aa1e244d4439f5dfb4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

MD5 1af36b2e81b22d93b5131b156aa35e6f
SHA1 041636c9cf4b921ad9297aea14ad534500167215
SHA256 32ac295d414b5719d27a7a86afb487a8ba654d03a0b16d245f6023b8d2815a7e
SHA512 1bb2361f85814da685de77d77b25464ffb8ed408bd837234b35792ec9be97fd3ced7d5e8dd1faabb2cd07f938d1a5a977e12e2e07dfe0367a14bf525adebccf2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\2cde1ed5-1097-41a5-a61a-46408ffb906c.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 13aeb4e98e2bdeec64c4ad10a4559cc6
SHA1 4a090ed69a1f52ccaff79052e4cedb7717b85333
SHA256 5c6c21e04a3721002f60e91c2eb4b2e13e2fca32ff6a4fa3850374275db9d5ca
SHA512 3458e02db6be587d9d69d76b156d4db6bbda5e98f06d7ad728e9d70467a60195b59086b67c420563223b330282e6a7240d45a97084c9c23febc8606a556404ba

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 6f7615ffead18618270340bbe3c174d0
SHA1 b7c89cca56ac4acb1518d0e5a2b3fe0e39eee2e4
SHA256 dff8ee938066fde03954ebe2e85eb1d2e68b23dbd5ef0a022b801171d6d5a09c
SHA512 0a5a1ab9731f14ff4e7b995f44155e02feb8d079b347438855d4a9023841477b696ce4b0f5cf059a0b70cb691545d87efea830216e67c83f193578ab96281682

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 589c49f8a8e18ec6998a7a30b4958ebc
SHA1 cd4e0e2a5cb1fd5099ff88daf4f48bdba566332e
SHA256 26d067dbb5e448b16f93a1bb22a2541beb7134b1b3e39903346d10b96022b6b8
SHA512 e73566a037838d1f7db7e9b728eba07db08e079de471baca7c8f863c7af7beb36221e9ff77e0a898ce86d4ef4c36f83fb3af9c35e342061b7a5442ca3b9024d2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 ffa61ce9fa1e13af646c62ee99d403c4
SHA1 19ea2d3664dbac614342feb98ad1bbc457ef80c6
SHA256 9783a9544a75f18bd38d9fb1091a98f8d6618668f2a22d170209bfdbafb29f6b
SHA512 aec0b063b40bb697bddf1395f778843249d43026f6a01430f47286f9eac6830d2f9789fde440999e237af063e0407f947cbafc59e20cdc70d080d228cf409299

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 32fe01a42cc9d029b85f426c1191abd0
SHA1 52596bfb7921fe21bbba4598b71592c17abdf782
SHA256 a3643c2aba1cb239f3b612d02a77bbedcd5476dd17b213149ff73c207ca43a53
SHA512 05fd52dfb913708c96203b9e3a5324d7090dbe92b8b840eb78ec76eda7541b5b166ead2f3af88ee894d688286097f9242fa5f2bd147c9abd7996156ad8bfacc8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 adba6a4e289a521fda93e1763188b173
SHA1 c3d868817efeff84dd2ee885d608fb597d61d1c5
SHA256 eb91c821493ea808398decc6f18e713a8efe29bc7aac77ed67ebaffb014408ae
SHA512 e00c8bcac0d8f6c5d32d12c5ec2f8d9337a712a705d480a6a081ae5f84d0c7ea69bef21894a09e7ba3f4f07e61a690643487e5193847f614a1ca79fdfe92b218

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 8e6abdf708ff46429a91bfa9d8e57cbb
SHA1 177de0aee16193a905bb33b2ba968c0e39367a9f
SHA256 75dfde6f3767558b3b22a11b718fd20f6f09cb0adc2ae867a57003267db00079
SHA512 a711c7fa20ead91e32f3daccbde447142a1532c2c1ed5fcd71d9b93b5b39f493123d654cdddb1af1aa419d2cfaf232a2805bb268e1ae711999be51a134ee29c3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 a47d0682eb0e31d1c8bdd2275e58c6f8
SHA1 f1e0fc2dc17ba30efb5c18731bc5baf01aeda964
SHA256 09a8e626258ef61fb8a167207f15c2882566c0a0e238959f54ccc610a8a50df3
SHA512 776a3eb5409314cfad0979ec2f8eb0468e848455e5849f3d100588f3e98170b64f1a84dfd359f4a2ceadb33fa5c36aa47411b4b8d3628b15284a6e8c96fcacec

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f6

MD5 017e28cd77905a0bd918d7e725632a2a
SHA1 d709e343f64d93ab00c6fc0aa4ae6ab22aec9f73
SHA256 c8de0e92e603214114f8800dd99ecf8cb69ac85caf8010a99ba3f66afe70fcbf
SHA512 0ae6f1dea994d879043b0ef63049cdbd68dd7671b1df53f3688e91a7027dde8de6d193bafeb12f4c6b7f97909d116f06811a29d13c56ada2c774e78dcc5f1a16

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 db77aadae42f6e379705003822ebde66
SHA1 72146df555517fdce5b0022b748b404473e1847b
SHA256 e81d0345d71f220544013164a4e50519623cef6243578c6a6863df35723246c9
SHA512 6f0ee88fd4fd854064ab5210a4a665f568632bfe687533c8c52e2ac72b679e0d7054f4766f0843b02fadcf61f75513fd54ccd885f546d541aa7d063395c8b6fd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 2e5f3f8bc6d2050c686013d6f99e331f
SHA1 08f40ad498e7b0b76813535ef3434a378f9bbdfb
SHA256 6d3690243811d16b325e01ee1231632773f92127c5ae246dc8f5e621c4d8844d
SHA512 43e88e047aff8424a393cc71851aee1fbc9cc718fe520cded7f02ff021056ea24d1d7fc494779ee1adea34d7636e4742fa8773fceb1d0e6e1422dd5789363cc3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 6dd3bfa0f81cf38cb684e05a2c50260d
SHA1 36b2c82ec192d596705b3ee0e521e7a2c36d8bae
SHA256 a7fb1fadb327e91b789e4bf1bba60d7d1922872243ee37bd419bb00079a40a4a
SHA512 44d0efae442549bb78850e78d924a2648ea308877c82ba451754daf6e27d527947ee6c63b6acf566dede80f147947eb6b011dfdb95a6cf9d0e8818107e09b48d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 6a613bbbe6e6cf28632049199ba808e7
SHA1 859cb44b3b1b6d3ee64c241bac849ac029dfe997
SHA256 dcb398f161fa6ed1e8724905337c7da1fd789e40d9f3d6a6cb4309282ee20ec0
SHA512 5c1a30c5f8d49ec5a33da7ed1e36e78abc23cdbaabfe1babcd7b05579aea878eaec598230bf23ba533b1a80ad342309951f9115a96a41105fa71ce159a756dce

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 cd014eaf1b66b160b0641542af3966c4
SHA1 42d469dc75198187bfa704321890c204dc5b88b6
SHA256 1bb97bf7cecb297e9e8dadd1d441fe0c7a91ff5507defd54f8a6a6bce764867f
SHA512 3599f93ad765b9a9fe41e752b6f264cf2360dcf5f336e9fb0860d2eb03bc9264b68c13e1bfa8edf299ec185da8ccfd54e15192f731732d5de11e27bc70fff2ca

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 ff4983dfb7216f46b159121ba0714a11
SHA1 2eb1e891996c5aeb0de64b22bc85504b8c524bdb
SHA256 98385ee00dee3ec7bfcaa9e4f998a43b5a9a336298cd6ca67fe896c44a63b38e
SHA512 0b8a545f8b816dd4ff5d6f6fb22e75cedb7d5461acdc159b43afe5ae1ddb9abb07af0bee63d5468c58b9a64dfb5cdb2eed88d5339a5850f92ad31b63f555100e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 4627389456ea5af0b6a523d267a0a63d
SHA1 1268e90d5cf692a95ac4ec17c1802eeff23f4993
SHA256 74af0051d855a3357b6ca0493e1d616be8953d238392344cfc07b46c2fb7a1d9
SHA512 de526ae8b80422277376c1707f36e6ebf15a559b0fea19459c2019326e0831ecb66b1b5afb25bee4674bd93a5d378bd5c447fb065ba958ab2a3c897a3c135f11

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 365b11f5e809c320e423a9e68a60fc4c
SHA1 b5d937a8e3656f78a75a2826c48d6d9ccb174a4f
SHA256 f9bc6152af605637ddfe5ee0596279a6c3be7b7663d9011f6e3cc5ab6c3f7f7b
SHA512 12d0926d62d94252017c6538cf2e89ea07513f6789d5280642ce395d2c583bfc28362c2d31a9dc30ec0640d34620675a3d304b3012ec079520a59d55cb790d08

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 60e3f691077715586b918375dd23c6b0
SHA1 476d3eab15649c40c6aebfb6ac2366db50283d1b
SHA256 e91d13722e31f9b06c5df3582cad1ea5b73547ce3dc08b12ed461f095aad48ee
SHA512 d1c146d27bbf19362d6571e2865bb472ce4fe43dc535305615d92d6a2366f98533747a8a70a578d1f00199f716a61ce39fac5cab9dd67e9c044bc49e7343130e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 ab31944f005c3af08b01bf502ff7bd10
SHA1 e81d60932a5511ad2b4bac123a4ae02ae0c40c0e
SHA256 b2966d39b7ea677cb58a101c996d9653f767762c87d04f7769279362486666d1
SHA512 84d246d19e08775bc69aadf0cfba140d4832dfca3b0d68e3adda9fdba8aea16d4b4a0f8977ab463dfcd86d7e3e44c2aa36dedddbd804697fca57b5ad3f891fab

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f8

MD5 06a4fcd5eb3a39d7f50a0709de9900db
SHA1 50d089e915f69313a5187569cda4e6dec2d55ca7
SHA256 c13a0cd7c2c2fd577703bff026b72ed81b51266afa047328c8ff1c4a4d965c97
SHA512 75e5f637fd3282d088b1c0c1efd0de8a128f681e4ac66d6303d205471fe68b4fbf0356a21d803aff2cca6def455abad8619fedc8c7d51e574640eda0df561f9b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 be193dbbc126cd8bccb383974d3ac97d
SHA1 4ed0c22d1b93bb78f533e83cb1570421bc32466b
SHA256 a57e210fae3e86bde253ff5c68421af5b649f6b8aaab8ef7fb753b48aa1a49df
SHA512 4169f0f724d1e177d96a053fddce526dcd21d63315502e56184dc1f9bc2c84b1c10020eea16f71c34e62511863d125795c29d33f2c38d6e63bde7e3249d549a7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2ca4a042018df269af7c2f10fab6b281
SHA1 0bd41cad83784ad6e33338bc4d0ab156a7cecc9c
SHA256 87cf1fd41e2ac51d47cc43276aaafbc6c17c2d40c571ceb9ebd75a4165bbdc81
SHA512 a9b48f3701483c0bcd5619bf23d7425533ba448f3399e1e8f325a75ecc4fc9d84fec7115e9aa7ee68ae7e3db27e1377ca0903c2f69a4ba5414507b8a55924ab4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 84072d161670c7c9bb5fc01d0cfee79b
SHA1 8807b27a20a87e938f52c338c42b15409a4c6cd1
SHA256 1d111357cea01463b6f30ea6bee7402390bb76ff7141d6e682559f24cca44b90
SHA512 fcf0e81e36049f99ffafd8865eb9908deb6cdcd0448727c9d5c573c104aae2cc9d7b377dba189673bfbe6f356d03733e675017547720a81c1185ab121cbdcb48

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 8fa06ef385a8c35e37c9179d5ca54ece
SHA1 0309ce48f152e053b6ec4dda930560c8f235f604
SHA256 2ccff61aef56bc1e162445ea77da509e149465c417895d8d3e12a8c707112e98
SHA512 9c077586e6846006308c98f7ee3763c153447f2b5329c7aacf0eefad5d6137f10c57b643c2abcea1331a66db1a95d2092541abf8638a1735d90601b84a9af85e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 9835e7cb988f6dae01ce22c01a35faf5
SHA1 5ffb1c4ab7c4919514f9297746e16383ddec915f
SHA256 70b3864bdcfe445879bcf9fa19cb3207c8969881b65241f38306c8c476903fb4
SHA512 0782d7d366b4be186ba8b7ad89d05ab1cf759b0ccf85d6a845f0a334485b33bbf4b4f28be8721e6b239070699c8f314388af75ef8c0c2627e71754379cea5969

memory/2792-4557-0x0000000000320000-0x0000000000328000-memory.dmp

memory/2792-4558-0x0000000005370000-0x0000000005914000-memory.dmp

memory/2792-4559-0x0000000004D00000-0x0000000004D92000-memory.dmp

memory/2792-4560-0x0000000004EC0000-0x0000000004ECA000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 dbef3086419ae42bd95cafc8cb4f3680
SHA1 b24f8e0f85ff97c6296ff08532d336ab5d5ced19
SHA256 4f59179382f2a0a6cf7ac2b7fe410718d82af68a8b09521dae5d7f934ffc5472
SHA512 8f81a460a15e18cd52719b7198a237ce25ddb8cceb1478f613fc5145f46f91edf63848a8e68cb19e3ed52e9e822a37675f927849b3affe464b08496256279862

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 9920b9d8f8d439f1ef0df5023977d543
SHA1 36bc1c778327dd555abaab090f110f79d383a476
SHA256 8152e93ba4055d23f0a1b7a73e7111ff3f7f711671fdc91e7ef90aa298b28f9a
SHA512 5d78905308d1e9cce89c94372d1d479e595d4ac2286a663b46df62b652006ef78e466fab580cec9a370c0ec099401fb65f9166d422b4547eb331b258272a749a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Browser

MD5 a397e5983d4a1619e36143b4d804b870
SHA1 aa135a8cc2469cfd1ef2d7955f027d95be5dfbd4
SHA256 9c70f766d3b84fc2bb298efa37cc9191f28bec336329cc11468cfadbc3b137f4
SHA512 4159ea654152d2810c95648694dd71957c84ea825fcca87b36f7e3282a72b30ef741805c610c5fa847ca186e34bde9c289aaa7b6931c5b257f1d11255cd2a816

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 ab6ab31fbc80601ffb8ed2de18f4e3d3
SHA1 983df2e897edf98f32988ea814e1b97adfc01a01
SHA256 eaab30ed3bde0318e208d83e6b0701b3ee9eb6b11da2d9fbab1552e8e4ce88f8
SHA512 41b42e6ab664319d68d86ce94a6db73789b2e34cba9b0c02d55dfb0816af654b02284aa3bfd9ae4f1a10e920087615b750fb2c54e9b3f646f721afb9a0d1aea3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\3a3049ea-f568-46a9-9678-eb1920891fa2.tmp

MD5 d7bd9ee561db3ec211d2592924c30ac6
SHA1 5bc555df6de0fa3fa1ada8cc1d5539845fe165db
SHA256 1c882f30890426a9384356d3c37fb38da9aec16dc9c05b3f7bb2b393dd7b251d
SHA512 f0dbefd0ecebb40883065eb109f2ca89f0ed2696bd6e33c69c19478e2720114f8501e19b1e19f79efd04c74b93dfd25a7988d0b6101bbc1bfa045dd8a608a5d8