Analysis Overview
SHA256
2f53820e92c90d6409b59391f9263cc6d4b2c57e62ecfef02ea3b9cbb4b4019b
Threat Level: Known bad
The file ILoveMyParentsSoSoSoMuch.jpg was found to be: Known bad.
Malicious Activity Summary
Detected google phishing page
Writes to the Master Boot Record (MBR)
Drops file in System32 directory
Drops file in Windows directory
Enumerates physical storage devices
System Location Discovery: System Language Discovery
Browser Information Discovery
Suspicious use of SetWindowsHookEx
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Modifies data under HKEY_USERS
Modifies registry class
Suspicious behavior: SetClipboardViewer
Suspicious use of FindShellTrayWindow
Suspicious behavior: GetForegroundWindowSpam
Suspicious behavior: EnumeratesProcesses
Suspicious use of AdjustPrivilegeToken
Enumerates system info in registry
Checks SCSI registry key(s)
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2025-01-12 22:31
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2025-01-12 22:31
Reported
2025-01-12 22:41
Platform
win10v2004-20241007-en
Max time kernel
547s
Max time network
519s
Command Line
Signatures
Detected google phishing page
Writes to the Master Boot Record (MBR)
| Description | Indicator | Process | Target |
| File opened for modification | \??\PhysicalDrive0 | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\System32\devmgmt.msc | C:\Windows\system32\mmc.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\INF\c_magneticstripereader.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_mcx.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\oposdrv.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_volume.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsactivitymonitor.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_extension.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_computeaccelerator.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fscontinuousbackup.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\rdcameradriver.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fshsm.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\remoteposdrv.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_monitor.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_proximity.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_swcomponent.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_netdriver.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\ts_generic.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsencryption.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\dc1-controller.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_holographic.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_diskdrive.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsundelete.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\PerceptionSimulationSixDof.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\wsdprint.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_receiptprinter.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fscontentscreener.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\rawsilo.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\miradisp.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\digitalmediadevice.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_display.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_media.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_scmdisk.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_camera.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fssystem.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_cashdrawer.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fssecurityenhancer.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fssystemrecovery.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsantivirus.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_linedisplay.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_sslaccel.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsreplication.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_scmvolume.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_apo.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsvirtualization.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsphysicalquotamgmt.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fscopyprotection.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_barcodescanner.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\xusb22.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsinfrastructure.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsopenfilebackup.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fscompression.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_processor.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_smrdisk.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_smrvolume.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fsquotamgmt.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_fscfsmetadataserver.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_ucm.PNF | C:\Windows\system32\mmc.exe | N/A |
| File created | C:\Windows\INF\c_firmware.PNF | C:\Windows\system32\mmc.exe | N/A |
Browser Information Discovery
Enumerates physical storage devices
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\notepad.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\notepad.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\explorer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\explorer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Phantom | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000002 | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Properties\{cf73bb51-3abf-44a2-85e0-9a3dc7a12132}\0006 | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\000A\ | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\000A | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000001 | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{cf73bb51-3abf-44a2-85e0-9a3dc7a12132}\0006 | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{cf73bb51-3abf-44a2-85e0-9a3dc7a12132}\0006 | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\FriendlyName | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Phantom | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000 | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\ConfigFlags | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{cf73bb51-3abf-44a2-85e0-9a3dc7a12132}\0006 | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\000A\ | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\FriendlyName | C:\Windows\system32\mmc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\FriendlyName | C:\Windows\system32\mmc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\000A | C:\Windows\system32\mmc.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133811952118041915" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 020202 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\0 = 820031000000000047595c4a110050726f6772616d7300006a0009000400efbe47598b482c5a91b42e0000005de1010000000100000000000000000040000000000017a56500500072006f006700720061006d007300000040007300680065006c006c00330032002e0064006c006c002c002d0032003100370038003200000018000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell\SniffedFolderType = "Generic" | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings | C:\Windows\SysWOW64\explorer.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\0\0 | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616257" | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell | C:\Windows\system32\mmc.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0100000000000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0 = 560031000000000047598f48100057696e646f777300400009000400efbe47598b482c5a48b42e0000005ae101000000010000000000000000000000000000007cbf6600570069006e0064006f0077007300000016000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\0\0\MRUListEx = ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0 = 860031000000000047598d48110053544152544d7e3100006e0009000400efbe47598b482c5a91b42e0000005ce10100000001000000000000000000440000000000b2242b005300740061007200740020004d0065006e007500000040007300680065006c006c00330032002e0064006c006c002c002d0032003100370038003600000018000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0 = 5c003100000000002c5a71b414004d4943524f537e310000440009000400efbe47598b482c5a91b42e00000059e101000000010000000000000000000000000000002650e2004d006900630072006f0073006f0066007400000018000000 | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\0 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 = 14001f44471a0359723fa74489c55595fe6b30ee0000 | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings | C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0 | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\0\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0" | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0 | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3 | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0 = 820074001c0043465346160031000000000047598b48120041707044617461000000741a595e96dfd3488d671733bcee28bac5cdfadf9f6756418947c5c76bc0b67f400009000400efbe47598b482c5a10b42e00000057e1010000000100000000000000000000000000000092bca4004100700070004400610074006100000042000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0 | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1" | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16" | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\0\0 = 9a0031000000000047598d48110041444d494e497e310000820009000400efbe47598d4847598d482e00000088e3010000000100000000000000000058000000000098602600410064006d0069006e00690073007400720061007400690076006500200054006f006f006c007300000040007300680065006c006c00330032002e0064006c006c002c002d0032003100370036003200000018000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\0\0\0\0\0\NodeSlot = "3" | C:\Windows\system32\mmc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings | C:\Windows\SysWOW64\explorer.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0 = 5600310000000000475938521000526f616d696e6700400009000400efbe47598b482c5a25b42e00000058e1010000000100000000000000000000000000000036472a0152006f0061006d0069006e006700000016000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0\MRUListEx = 00000000ffffffff | C:\Windows\system32\mmc.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 | C:\Windows\system32\mmc.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlgLegacy\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" | C:\Windows\system32\mmc.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious behavior: SetClipboardViewer
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Processes
C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\ILoveMyParentsSoSoSoMuch.jpg
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2112 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2748 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3412 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5080 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5216 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3660 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5316 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5316 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4232 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3740 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4512 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5492 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3116 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5516 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3664 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5868 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6184 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe"
C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe" /watchdog
C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe" /watchdog
C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe" /watchdog
C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe" /watchdog
C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe" /watchdog
C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_MEMZ-virus-main.zip\MEMZ-virus-main\MEMZ.exe" /main
C:\Windows\SysWOW64\notepad.exe
"C:\Windows\System32\notepad.exe" \note.txt
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5364 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4528 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5836 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1332 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5956 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=2996 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x2e4 0x2e0
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4060 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6736 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+send+a+virus+to+my+friend
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x128,0x12c,0x130,0x104,0x134,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6824 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4084 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5420 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6516 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7128 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7300 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7324 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1448 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=my+computer+is+doing+weird+things+wtf+is+happenin+plz+halp
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6444 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=minecraft+hax+download+no+virus
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5352 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7484 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7180 /prefetch:1
C:\Windows\SysWOW64\mmc.exe
"C:\Windows\System32\mmc.exe"
C:\Windows\system32\mmc.exe
"C:\Windows\system32\mmc.exe"
C:\Windows\SysWOW64\mmc.exe
"C:\Windows\System32\mmc.exe"
C:\Windows\system32\mmc.exe
"C:\Windows\system32\mmc.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3440 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7020 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7324 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7328 /prefetch:1
C:\Windows\SysWOW64\mmc.exe
"C:\Windows\System32\mmc.exe"
C:\Windows\system32\mmc.exe
"C:\Windows\system32\mmc.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+remove+memz+trojan+virus
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6008 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8084 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7340 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7852 /prefetch:1
C:\Windows\SysWOW64\mmc.exe
"C:\Windows\system32\mmc.exe" "C:\Windows\System32\devmgmt.msc"
C:\Windows\system32\mmc.exe
"C:\Windows\System32\devmgmt.msc" "C:\Windows\System32\devmgmt.msc"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8100 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6628 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7420 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6708 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=half+life+3+release+date
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7940 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6100 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3400 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7464 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5672 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7796 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7896 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4000 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7928 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7896 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+2+remove+a+virus
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x128,0x12c,0x130,0x104,0x134,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6572 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7484 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+create+your+own+ransomware
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0x9c,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7132 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7860 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3116 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6876 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3748 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6020 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6916 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,11536631419231674480,12009818425521521781,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4524 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=virus.exe
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2140 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2192 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2900 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3256 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3264 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4484 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4688 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5448 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5448 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=g3t+r3kt
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x124,0x128,0x12c,0x100,0x130,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5608 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2124,1085797193660426121,958088778919174758,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5616 /prefetch:1
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe"
C:\Windows\SysWOW64\explorer.exe
"C:\Windows\System32\explorer.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff84c86cc40,0x7ff84c86cc4c,0x7ff84c86cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1676,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1628 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1876,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2100 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2308,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2496 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3148,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3168 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3288,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3296 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4548,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4528 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4832,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4868 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4992,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5040 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5024,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5052 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5048,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5284 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4872,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5296 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5408,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5284 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4896,i,6002095548660265384,8884517555262402812,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4260 /prefetch:2
C:\Windows\SysWOW64\notepad.exe
"C:\Windows\System32\notepad.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+2+remove+a+virus
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x120,0x124,0x128,0x104,0x12c,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2184,6218354331574436244,13315217327665371880,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2192 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2184,6218354331574436244,13315217327665371880,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2244 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2184,6218354331574436244,13315217327665371880,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2976 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2184,6218354331574436244,13315217327665371880,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3368 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2184,6218354331574436244,13315217327665371880,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3376 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2184,6218354331574436244,13315217327665371880,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5060 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2184,6218354331574436244,13315217327665371880,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3740 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=vinesauce+meme+collection
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff83bf946f8,0x7ff83bf94708,0x7ff83bf94718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2240 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2320 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2728 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4992 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5184 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5408 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5408 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5488 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5504 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5168 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,1642220367041342907,4441297532325042609,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5276 /prefetch:1
C:\Windows\SysWOW64\explorer.exe
"C:\Windows\System32\explorer.exe"
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 97.17.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.27.33.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.173.78.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.249.119.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.163.245.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.27.33.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| FR | 95.100.200.112:443 | www.bing.com | tcp |
| FR | 95.100.200.112:443 | www.bing.com | tcp |
| FR | 95.100.200.112:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 112.200.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| FR | 95.100.200.112:443 | th.bing.com | tcp |
| FR | 95.100.200.112:443 | th.bing.com | tcp |
| FR | 95.100.200.112:443 | th.bing.com | tcp |
| FR | 95.100.200.112:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| IE | 40.126.31.69:443 | login.microsoftonline.com | tcp |
| IE | 40.126.31.69:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | 69.31.126.40.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | 23.236.111.52.in-addr.arpa | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.133:443 | avatars.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.111.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 140.82.112.21:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | codeload.github.com | udp |
| GB | 20.26.156.216:443 | codeload.github.com | tcp |
| US | 8.8.8.8:53 | 216.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| FR | 95.100.200.112:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 142.250.180.14:443 | www.youtube.com | tcp |
| GB | 142.250.180.14:443 | www.youtube.com | tcp |
| GB | 142.250.180.14:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.178.22:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| BE | 142.251.173.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | 14.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| BE | 142.251.173.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | rr2---sn-q4flrnlz.googlevideo.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 74.125.3.135:443 | rr2---sn-q4flrnlz.googlevideo.com | tcp |
| US | 74.125.3.135:443 | rr2---sn-q4flrnlz.googlevideo.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 84.173.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.187.250.142.in-addr.arpa | udp |
| US | 74.125.3.135:443 | rr2---sn-q4flrnlz.googlevideo.com | tcp |
| US | 74.125.3.135:443 | rr2---sn-q4flrnlz.googlevideo.com | tcp |
| US | 74.125.3.135:443 | rr2---sn-q4flrnlz.googlevideo.com | tcp |
| US | 74.125.3.135:443 | rr2---sn-q4flrnlz.googlevideo.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | youtube.com | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 135.3.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.187.250.142.in-addr.arpa | udp |
| GB | 216.58.213.14:443 | youtube.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.179.234:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| GB | 142.250.179.234:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | google.co.ck | udp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| US | 8.8.8.8:53 | support.google.com | udp |
| US | 8.8.8.8:53 | consent.youtube.com | udp |
| GB | 142.250.200.46:443 | consent.youtube.com | tcp |
| GB | 142.250.178.22:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 226.212.58.216.in-addr.arpa | udp |
| GB | 216.58.213.14:443 | youtube.com | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 142.250.187.230:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 230.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| FR | 95.100.202.16:443 | aefd.nelreports.net | tcp |
| US | 8.8.8.8:53 | 16.202.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | suggestqueries-clients6.youtube.com | udp |
| GB | 216.58.204.78:443 | suggestqueries-clients6.youtube.com | tcp |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| GB | 216.58.204.78:443 | suggestqueries-clients6.youtube.com | udp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| GB | 142.250.178.22:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 172.217.16.225:443 | yt3.ggpht.com | tcp |
| GB | 172.217.16.225:443 | yt3.ggpht.com | tcp |
| US | 8.8.8.8:53 | lh6.googleusercontent.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| GB | 142.250.200.33:443 | lh3.googleusercontent.com | tcp |
| GB | 142.250.200.33:443 | lh3.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rr3---sn-5hneknee.googlevideo.com | udp |
| NL | 74.125.8.72:443 | rr3---sn-5hneknee.googlevideo.com | tcp |
| NL | 74.125.8.72:443 | rr3---sn-5hneknee.googlevideo.com | tcp |
| US | 8.8.8.8:53 | 72.8.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.187.250.142.in-addr.arpa | udp |
| NL | 74.125.8.72:443 | rr3---sn-5hneknee.googlevideo.com | udp |
| GB | 142.250.200.33:443 | lh3.googleusercontent.com | udp |
| GB | 172.217.16.225:443 | yt3.ggpht.com | udp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| FR | 95.100.202.16:443 | aefd.nelreports.net | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 88.221.87.113:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| GB | 88.221.87.112:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | 113.87.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.87.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.ve3rl.com | udp |
| GB | 216.58.204.83:443 | www.ve3rl.com | tcp |
| GB | 216.58.204.83:443 | www.ve3rl.com | tcp |
| GB | 216.58.204.83:443 | www.ve3rl.com | tcp |
| US | 8.8.8.8:53 | 83.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 142.250.178.14:443 | apis.google.com | tcp |
| GB | 142.250.178.14:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | lh5.googleusercontent.com | udp |
| GB | 142.250.200.33:443 | lh5.googleusercontent.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | lh4.googleusercontent.com | udp |
| GB | 88.221.87.113:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| US | 8.8.8.8:53 | 252.15.104.51.in-addr.arpa | udp |
| GB | 88.221.87.112:443 | th.bing.com | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 88.221.87.163:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | fpt.microsoft.com | udp |
| US | 52.167.30.171:443 | fpt.microsoft.com | tcp |
| US | 52.167.30.171:443 | fpt.microsoft.com | tcp |
| US | 8.8.8.8:53 | 163.87.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| FR | 95.101.110.189:443 | aefd.nelreports.net | tcp |
| US | 8.8.8.8:53 | 189.110.101.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fpt2.microsoft.com | udp |
| US | 8.8.8.8:53 | 171.30.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.32.126.40.in-addr.arpa | udp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| US | 8.8.8.8:53 | t.ssl.ak.dynamic.tiles.virtualearth.net | udp |
| FR | 95.101.110.200:443 | t.ssl.ak.dynamic.tiles.virtualearth.net | tcp |
| FR | 95.101.110.200:443 | t.ssl.ak.dynamic.tiles.virtualearth.net | tcp |
| FR | 95.101.110.200:443 | t.ssl.ak.dynamic.tiles.virtualearth.net | tcp |
| FR | 95.101.110.200:443 | t.ssl.ak.dynamic.tiles.virtualearth.net | tcp |
| FR | 95.101.110.200:443 | t.ssl.ak.dynamic.tiles.virtualearth.net | tcp |
| FR | 95.101.110.200:443 | t.ssl.ak.dynamic.tiles.virtualearth.net | tcp |
| FR | 95.101.110.200:443 | t.ssl.ak.dynamic.tiles.virtualearth.net | udp |
| US | 8.8.8.8:53 | 200.110.101.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dev.virtualearth.net | udp |
| US | 13.107.246.64:443 | dev.virtualearth.net | tcp |
| US | 13.107.246.64:443 | dev.virtualearth.net | tcp |
| US | 8.8.8.8:53 | landmark3dweb.azureedge.net | udp |
| US | 13.107.246.64:443 | landmark3dweb.azureedge.net | tcp |
| US | 8.8.8.8:53 | t.ssl.ak.tiles.virtualearth.net | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | organcity.com | udp |
| US | 172.96.186.201:443 | organcity.com | tcp |
| US | 172.96.186.201:443 | organcity.com | tcp |
| US | 8.8.8.8:53 | 201.186.96.172.in-addr.arpa | udp |
| US | 172.96.186.201:443 | organcity.com | udp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| GB | 142.250.187.196:443 | google.co.ck | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 3.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.200.250.142.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 142.250.187.238:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | clients2.googleusercontent.com | udp |
| GB | 142.250.200.33:443 | clients2.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | google.co.ck | udp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| US | 8.8.8.8:53 | support.google.com | udp |
| GB | 142.250.187.196:443 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | google.co.ck | tcp |
| GB | 142.250.187.196:443 | google.co.ck | udp |
| GB | 142.250.187.196:443 | google.co.ck | tcp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 7de1bbdc1f9cf1a58ae1de4951ce8cb9 |
| SHA1 | 010da169e15457c25bd80ef02d76a940c1210301 |
| SHA256 | 6e390bbc0d03a652516705775e8e9a7b7936312a8a5bea407f9d7d9fa99d957e |
| SHA512 | e4a33f2128883e71ab41e803e8b55d0ac17cbc51be3bde42bed157df24f10f34ad264f74ef3254dbe30d253aca03158fde21518c2b78aaa05dae8308b1c5f30c |
\??\pipe\LOCAL\crashpad_1108_YBBCPSRZGCJKGYJS
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 85ba073d7015b6ce7da19235a275f6da |
| SHA1 | a23c8c2125e45a0788bac14423ae1f3eab92cf00 |
| SHA256 | 5ad04b8c19bf43b550ad725202f79086168ecccabe791100fba203d9aa27e617 |
| SHA512 | eb4fd72d7030ea1a25af2b59769b671a5760735fb95d18145f036a8d9e6f42c903b34a7e606046c740c644fab0bb9f5b7335c1869b098f121579e71f10f5a9c3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4b48fec0dad1c780146b7544b0ea4fc3 |
| SHA1 | 8d0476e010521ad5eeab9633c95211c017a095a7 |
| SHA256 | 2efee53fc24cb65f1c7349126e125eb31c223f76250f69f600240aee12c2194e |
| SHA512 | 7e7047ad1394453d3c06b48f605b648b86ecd13df990d29c2c672239f386c34526ab8e4522db5522f3b29b88ea9f1920aac08ec68961f2b6e4128edc39921b2d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 8fe6e7f81444e9ff638a621dcb384c5f |
| SHA1 | 3d035ee41dbf69b5ef93c9449bce31ee35698db5 |
| SHA256 | 1f4dd63a463fec44106f23123b4b2ebe7734932f6ce7581d48326f817303155f |
| SHA512 | 391c5667a5b9e92e86476b0ccdd0b3a9ac6c6ad77acc1fe06ddc17622a6dc01c605f7ed8b6a928f90a7680f9d9cd43b472b368f288f2baec1c32b622764667ed |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0af9625f5dbcbfba3250c17b41c95398 |
| SHA1 | 2199008036b400d25bd579f87b1ba41e868acc1c |
| SHA256 | 8a7a80233989f929a9415a6778a5882d31b5621b43a77330bee8313b4d3bfc44 |
| SHA512 | 773ff982ab33009850d14aaa4f4c9b03107b181f4b8f42c337c7ab4684bf29c51a94d0d2e2a491da7b652150415cb34215cd31aa471b93c2d535d041c5dd89fb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3e6b942e9b702ebd208b02a894839552 |
| SHA1 | 857e9a287ddcc8b50ca3a54b3595df5efa7e5086 |
| SHA256 | a848cc5bd54f7e0f05b9918a4e8ebbd4e9373d204f9f05ab24bf914d6b5d6da3 |
| SHA512 | c4956447e65413485aa7f0f2081920dd139606cf3e560bdf91570ac30cb182de5ef96d4cca4d949394dedb9b00f3a3f0fd97048071f5e90c7a930721a52cff3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6ed1d21f2c74a5834b4fbc88f3698e3a |
| SHA1 | 5606dfd02f99768c076cd143593fe7727ed24102 |
| SHA256 | 5795bc23f9becdbb99c030d051ddeb2111e24367b9cafa215a6bfe6369b13f44 |
| SHA512 | 94f5ae5cd66db8aff65e21ce374e80af24983c6b9b84cba6996c2e3abfdec3c3a13a2b6e855fa84cc13565bfddd13bacab564fcce4050979f9603b5571b537dd |
C:\Users\Admin\Downloads\MEMZ-virus-main.zip
| MD5 | a043dc5c624d091f7c2600dd18b300b7 |
| SHA1 | 4682f79dabfc6da05441e2b6d820382ff02b4c58 |
| SHA256 | 0acffde0f952b44d500cf2689d6c9ab87e66ac7fa29a51f3c3e36a43ea5e694a |
| SHA512 | ee4f691a6c7b6c047bca49723b65e5980a8f83cbbc129ddfd578b855430b78acf3d0e461238739cd64c8a5c9071fe132c10da3ac28085fc978b6a19ee1ca3313 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c368e0cf93429c6d4d8014f29c85e5fa |
| SHA1 | 850179e29e3406df902b9b7a0b358be579a47b7c |
| SHA256 | 4d63a2ca6d61eb00b4096423a6de51c23208cd02870c1b8d9db07ce54bd16637 |
| SHA512 | fec0595d1820d3378edfe629f5c076b5e3962f160a9098813530927a46be1621db5d4b205ff5461bfe97c932b07eb1519b9d9324b6baf8bd002983e85c1494b0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe593ea5.TMP
| MD5 | c19e54f3ae6807ffc73ff55fd8008294 |
| SHA1 | d8a09478f597c6cd3d85d32467c8d42c68e661f4 |
| SHA256 | 6b5fd276b4179cb2c3e4dac62802f8b6dafc693a2da6fed25ad614eadd80abf3 |
| SHA512 | 0a30a4a2a8493f2d0fea3b973d34599527793bdfd66dafcda7eeb58615b2cbebbdcdc085b83e2853583b78d4dcec13cef08a08b3c0f036a20c1a1f4df55d9c13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 7b028bd4ba99d750333a7bb533ac6776 |
| SHA1 | fe6088ff7ee67bc07cbf0ffb056a7470e492a93d |
| SHA256 | c06d6afdd81a3c4deb12a10c7cf41486e67d33252ff05b384898ddceea9a43c5 |
| SHA512 | 445307008e9e9f927dce047082de758cb6925208643c6c1508ec997b594ef168f1d2e8964a99307ab7457e09fa7b269bf0fe095a1abf0d3bd05425f454857fbc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 49f37c01658cd2c442be293972cee4f3 |
| SHA1 | 4c055dbb3705853ffc5b15e0b53d763647827814 |
| SHA256 | 8e05cc653a6c417a84b2f99a37e3c9db157099a17c837ba48d94052620fcf956 |
| SHA512 | 8881af0d621d7a40f40352ec75c1c0db3e17d857e8e08e1625d758c3ec46d8ba3db7527fdf97a9f8a442fd2089f6574fe3d4e4222af364169caacfc0393dd510 |
C:\note.txt
| MD5 | afa6955439b8d516721231029fb9ca1b |
| SHA1 | 087a043cc123c0c0df2ffadcf8e71e3ac86bbae9 |
| SHA256 | 8e9f20f6864c66576536c0b866c6ffdcf11397db67fe120e972e244c3c022270 |
| SHA512 | 5da21a31fbc4e8250dffed30f66b896bdf007ac91948140334fe36a3f010e1bac3e70a07e9f3eb9da8633189091fd5cadcabbaacd3e01da0fe7ae28a11b3dddf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 09adfcb3d3ffc0c3813e2fa165bb946d |
| SHA1 | 7a850764b381e0dfde40170927bb8a8051bbbfd0 |
| SHA256 | 80b277d2b6a159e2f041f4d10c4dc18706dc36dc9ae416c696de4cc3e76a0c28 |
| SHA512 | 381bded1e31399036f9a52a2525b04004630c27741c44c7d6b2e0faee91f40219b12f4d73082be17a4e3c209039cb17b594c98654396dd14a3fcc58886b363b0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004
| MD5 | c813a1b87f1651d642cdcad5fca7a7d8 |
| SHA1 | 0e6628997674a7dfbeb321b59a6e829d0c2f4478 |
| SHA256 | df670e09f278fea1d0684afdcd0392a83d7041585ba5996f7b527974d7d98ec3 |
| SHA512 | af0d024ba1faafbd6f950c67977ed126827180a47cea9758ee51a95d13436f753eb5a7aa12a9090048a70328f6e779634c612aebde89b06740ffd770751e1c5b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003
| MD5 | 69df804d05f8b29a88278b7d582dd279 |
| SHA1 | d9560905612cf656d5dd0e741172fb4cd9c60688 |
| SHA256 | b885987a52236f56ce7a5ca18b18533e64f62ab64eb14050ede93c93b5bd5608 |
| SHA512 | 0ef49eeeeb463da832f7d5b11f6418baa65963de62c00e71d847183e0035be03e63c097103d30329582fe806d246e3c0e3ecab8b2498799abbb21d8b7febdc0e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005
| MD5 | 226541550a51911c375216f718493f65 |
| SHA1 | f6e608468401f9384cabdef45ca19e2afacc84bd |
| SHA256 | caecff4179910ce0ff470f9fa9eb4349e8fb717fa1432cf19987450a4e1ef4a5 |
| SHA512 | 2947b309f15e0e321beb9506861883fde8391c6f6140178c7e6ee7750d6418266360c335477cae0b067a6a6d86935ec5f7acdfdacc9edffa8b04ec71be210516 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006
| MD5 | 1bd4ae71ef8e69ad4b5ffd8dc7d2dcb5 |
| SHA1 | 6dd8803e59949c985d6a9df2f26c833041a5178c |
| SHA256 | af18b3681e8e2a1e8dc34c2aa60530dc8d8a9258c4d562cbe20c898d5de98725 |
| SHA512 | b3ff083b669aca75549396250e05344ba2f1c021468589f2bd6f1b977b7f11df00f958bbbd22f07708b5d30d0260f39d8de57e75382b3ab8e78a2c41ef428863 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 75302db886e020fb6a9e3bdfb10a9ae2 |
| SHA1 | 6c4ac3ff4ea8bd2d7832ab1959c1c587a523d97c |
| SHA256 | c1de9aa15e441fb47a5afa2c0490c3b0aa0e75c56aeedd4da83e902c28ad5efb |
| SHA512 | f7754e7cc9e0726be269805eb14802c039a86be99a59627e2313599648ebf4eb4d02adeeca9746bcaa4b4d3b646fa6409a648d1c2e232e2df4713c640ba0b953 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 44c5d748ad154564526fc23b66b5b1d1 |
| SHA1 | abcbfbd000c4707d2655124478b95826e5974453 |
| SHA256 | 747b66ee463bcd5c7d4b34c2ce5302ff86baa111b2711fa99d6e47d647112695 |
| SHA512 | 9d355b0b5d0093d4b381afef0d2c4cf1d305ee99132ec6b75c166f11e866e04381b01f613a133e9313a5e573e10a3e75ade3d80af542b54269f0d020bda80a65 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | c6e8556175cc050187b99e83edda3307 |
| SHA1 | c04cb0b1d40130053b6bd03ebf85d4be94418b9e |
| SHA256 | a2ded4e0b2f2a0abe081c7a24c40de5fa25fe416e02a77807007d973d6401d96 |
| SHA512 | f7d2e7da6b22703f0623a83978c1c3ecb9dd18439d298d9ac59c0310394837b7ebd9c4a010b4193c64b3704128c8288043419df04c70be7dacb9989b2f1836b4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 5f7f4d7afb3f57e4ff86a3a768adbc90 |
| SHA1 | f48113b24a7c2fbc4a6c134b856edcfde6be6d88 |
| SHA256 | f0c32eefc07467ef47834556164096b6baaa5d6fb991035a5cf8db7904a7e38d |
| SHA512 | 4b7d6082db3c478d39cb4504cf5e3f8f115b08f79138169b4a8acf543330132246c6fa0c6c75854a8cd65f67030110e435f36899b4e689d6f38ea4dd40dc475f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 341dcc2f18ddb1127b9448f98054a855 |
| SHA1 | e3f13630702989abbde36cbdd6a3e4477d5f147c |
| SHA256 | a344d241b9d03cbeae9f5d23c0b7f44900a6560f571158da134805b05a757767 |
| SHA512 | 9a8392e1fa03a2b06ea7e82ddff16a103e96ab02a8acbbd9599319c73f548e574f5f410b9f4a5af66ec2039f21c370cfe6186ee5979f9bff03a1bcb2e0d707cb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 1f62dd9cdc5eaad1d94e0f2a971a9fdc |
| SHA1 | 8926d1c413220158c875b0e5543f3b586975b440 |
| SHA256 | 494f7900fab37f6a909ac75ea2a293a3e02422fc62726ebeb11bd929155b3dff |
| SHA512 | 960d6bbab8c213022fd3ae7a29d2366ee71744eb39e31b5d278c496f372a1172ef610575d4bdd595b66edcefaa23d6fbcddf69e31e59bd6d5c2f4386f86896e2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000029
| MD5 | d79b35ccf8e6af6714eb612714349097 |
| SHA1 | eb3ccc9ed29830df42f3fd129951cb8b791aaf98 |
| SHA256 | c8459799169b81fdab64d028a9ebb058ea2d0ad5feb33a11f6a45a54a5ccc365 |
| SHA512 | f4be1c1e192a700139d7cff5059af81c0234ed5f032796036a1a4879b032ce4eedd16a121bbf776f17bc84a0012846f467ad48b46db4008841c25b779c7d8f5a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\395ec4b2-d327-419d-8242-0bd5bb22b7fe\index-dir\the-real-index
| MD5 | 79babdd0a25868db6c8ffc841d15fc6f |
| SHA1 | 0e6ad94bd771cc0b7ca3477102f617fc95467fef |
| SHA256 | 1bea2288bb5dc629ac083c8fec93a520ffa79ff8aeefc3480df39fd77a972593 |
| SHA512 | adc507fac1c3552219e142917fa444f5a1c7ada233e51f49023e8629e4d6625bc6ac40d74f2bee547402ce3667806e10db4a106e463323063458e6a8f3865ac9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\395ec4b2-d327-419d-8242-0bd5bb22b7fe\index-dir\the-real-index~RFe59ecc7.TMP
| MD5 | 6673d1c6705dfaf7eae8e038a2ec9ca6 |
| SHA1 | 3e4b805dada091f377935633b60c34ee7241e78e |
| SHA256 | f813ce33db248213cceebff96d3a829e7a9e56143279eb3fc8647ba0facd3800 |
| SHA512 | f6209c9b1197009bc120e71c7b55e3af4aa610147a846ac401ec178bb6f0edd4c85384e8dfe569a566c2ac28c1c6b63a6947411a6c22ae68830cbb01ac31b91b |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 67b1e3125b84f8bd1813fa0dca2f1997 |
| SHA1 | b3e1f27c1fb08b05587c01ef3fa656e0c44b383e |
| SHA256 | 68c9685c3511a742c95a428b2bab956723fef1540274c3b41e8c98262f3bc6a1 |
| SHA512 | 9e53706d38f20c33281a33c91ef7aa53161fcf83aaa1d2e7a1f9366106c1b8f4c5ad835a3a78401ed1ccdd5a49918e7eee8e2759e1da8f3d344fc3a1a1bb53b7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | f9c2ed69f50fc4e6d5efc731315b2425 |
| SHA1 | 674ad8c5e7a13939e2157c3765f63078d8562365 |
| SHA256 | 51e09d6ce202cbafc52e52fa681a5420a5eb1be3e23404bae8ee10b63a07cde9 |
| SHA512 | 6dc8c286aeee00802c2adc5376de3bbc6aed6a603b6a105b9e501a73d7a5668669e7d125b53bfe0ac5f0ff554ba59008a321e7917c288ecc0ee1a0a834cf5609 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 230ec338b2badfc8eb6b9058cb8ffe01 |
| SHA1 | e935d9b16de37f331f6da90cd93396732c013fb9 |
| SHA256 | 81f308798a049ce1dcfa8961977f0be3c4a3ac709d62eb605f5ab9e496f6cb7c |
| SHA512 | 8e905089814e643e02293a130816f3cfe6bbdf172b0b48e7fd2cb1a04f37e20c361e3f262ec09bc222d46fbc582e5aa36f300c65eb829be7cb8c8dea3d8bb809 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\6951f27b-5131-4b23-b6bd-5d23e3ede405\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 6b9e7ed57ea5192ec2208da78620ccc1 |
| SHA1 | 3d13f1d84bcb8777291ab4eac8910408651d28c9 |
| SHA256 | 03bf6436d09a1a39fe3b33131dbaba34a2d33680672440bf3dcdb91edb01ac0e |
| SHA512 | 3ee9fa3a2d1a68c642d3f1f8b16082ecd658fe5ea1c5da78a28740eb7fd03758caab3d8da90f22128e26de1eb5aac5b6f5d7bb2c79d0953c421807014a88395a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001c
| MD5 | afdfdba750d77a65fedd390d20a727bd |
| SHA1 | b7948f70661731c45fd41e8be62be134865fd299 |
| SHA256 | 5d23ab16d09cc8960ceab365597dbb3ae198b10ff61adb3ef2131a63fd8a0075 |
| SHA512 | 6a7469772bd4815f5836864cb21bbf3d4a3185a7c88ab927107252e4403a90c90ba113dfae87734ff3e3edf8e2320b684fdbf463da2be1cfe816c73d4272ed92 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000024
| MD5 | c42c08a99ce3c2f433c063b397a47f02 |
| SHA1 | dab8b138bf74bbbe13eada32a0adc30a1e7e6e36 |
| SHA256 | 7f443fd5569722f8b22d3b740737bc2d576ebe13e7ccf4ccbdb9452eb1d3b97b |
| SHA512 | 2f0fe5b1e51b60ea451f0aabb9c80818e2d2bfb46fa2851c41f49d2b069eaae26ba21de6233c2611d7dceb1394beb953acb574f97abb950291bc8a8dd78a1a96 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000026
| MD5 | 796cde84f96aeb0e7938a6449c5df98c |
| SHA1 | bcfe2832173b772cf4ac08aa90a45550dd54f96d |
| SHA256 | d4bd3e815320447860e0564ac090789168e4b742484a19a05824992d6984f38c |
| SHA512 | ecce78771f99bc03e989abb43f2a10b254aa49bc35faa6d49c95304388ac2b054c3b513c7bbb14730fb14d0563712c1fc0cb376f5a298e8ec17160fa69033be7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000023
| MD5 | 65da8d6932ad74d3b51694b5a28dd0bb |
| SHA1 | aa6e37cdacda153f499c299299a4dacf50c93765 |
| SHA256 | 309ec80a404d5ba8c9816e0932bff343c8e205fe36819908682289ed7c7ae482 |
| SHA512 | bfce7ba0e18dde7d6f833709e565f704701d7a51b14d7c11b06cdce0b057290a334219c9aa4f7ea098c097eb779a2ceca397a9ad1ede0784348f78c81fd55015 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000025
| MD5 | 022b55bf2e87557e4598d3efc85b20c5 |
| SHA1 | 3212e3e3d4b0adb40d3eb18fce62f65082b260e4 |
| SHA256 | 1ca0d3ee1af6602ff407b8435f010be0cbbdf2447f8b1a13495cbfa1beaebb5c |
| SHA512 | f9fb708bf3e9771b87f5661d8939649f342279583146c47ffa62a8c29d678e957b283d479666191a92559762725f2e1349de40450fc04d2decd79ac5fb0ecbb3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f39551daa2086bf4c4cceff9f3db5117 |
| SHA1 | 031ede6a727a1da817dd82fe14aa64e69b49538e |
| SHA256 | a1b274a4a50c59711af20d419f7d7d9acfa8fe22437fd3b4aea1766fd31dc6d0 |
| SHA512 | 15b8d4443df5a859008127c38f6c9723c3a422ea43152de67d8063edfffacbf60406e414e1a9ccd9c75259b6fcf9fa64e41979011a2b17a17eca26b6042fa7f7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 596ac7507069a730b89e88780f80b7a1 |
| SHA1 | 67e33a354ec28af2bcb8aa7523b80b68747ddd1f |
| SHA256 | e959a141ac2a7c402fa489f2fcb46057f7777841a9c6d01af897eb63beb21748 |
| SHA512 | 81e6ce0a7d604022ef405727959f78b6c7db21cf034eccf6577326b14add0447a8433c63bab0182c1b64e091672dca6c55ffda77092951b6aafb17bb50b6c417 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 3e21ee9b78d96ba91766ca7fdb7d069a |
| SHA1 | 94766aec727ee09d07d68890d759c4ac3ff1cffe |
| SHA256 | e64abf8d870f1037718836aa41d6ee980014575f27ce294e8f3afb139c41ec41 |
| SHA512 | 74b26b302c07a0ce7c03d0e6c0f3e7e2d0abc9dbfbdc0502e0fd45ce1bff47f0d9de139784000bd7d3e177df9ec7a1bc6d24d0eecbb5f49efde1f7c2243e314d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000028
| MD5 | ca9e4686e278b752e1dec522d6830b1f |
| SHA1 | 1129a37b84ee4708492f51323c90804bb0dfed64 |
| SHA256 | b36086821f07e11041fc44b05d2cafe3fb756633e72b07da453c28bd4735ed26 |
| SHA512 | 600e5d6e1df68423976b1dcfa99e56cb8b8f5cd008d52482fefb086546256a9822025d75f5b286996b19ee1c7cd254f476abf4de0cf8c6205d9f7d5e49b80671 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 14f316be89716473b90b9647d2fe50de |
| SHA1 | c017d54150d09c8431602ccdb7e46f2316b4fd48 |
| SHA256 | ce59e00aa915ef8e8300c5fe825422869aa619fdc1359f4033392bb4fd8681e0 |
| SHA512 | 571ab28becd843e3e12ae93866325911c158db1fbead4dd0fa892db2d9f480852c086437e1a4c4a0b1cd90fd50148837138dfebc3196c56a227eda96d7a1fc43 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5a40b4.TMP
| MD5 | 77a38e73ebe3926ab64fa94ec35bdb9d |
| SHA1 | 02d3fc0b3adda937916e01c2466677d87abcc037 |
| SHA256 | b8927e2aabcdbbe4b393af4c626431cd0577907aece1eee42562563dca6b7c7f |
| SHA512 | 0523c0547d7c56fe1194c15882543acd0901506b59f27c874e564b29fad4b6ff33747b14d6ecb83ce006aedaf4dfbdafa22c22377d0514fbc5c8592966488bd4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\32799c31-4e2f-4d74-8451-36d5e934dc81\index-dir\the-real-index
| MD5 | 0788c3386cd2b40033001b20d6c56dc5 |
| SHA1 | 765ce0b5afb28c3cbb742a8f6a56535b0172a8ab |
| SHA256 | b8ba4fa68772dec7f1bbe9280f0d9bc165406f5c96f44047af306b12550a563d |
| SHA512 | 4880a8502bd8141269f0d0221b1526fd0ccb89a49fbf33a7516b99a956a7f218093167ce155c9d5686860ab33715f3a90b470c178f64e0a76a17eb479efc4904 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\32799c31-4e2f-4d74-8451-36d5e934dc81\index-dir\the-real-index~RFe5a475b.TMP
| MD5 | 9f9984ebffc33a985e3310e49db5d5bb |
| SHA1 | 197d87b93c7990e669ffd91577961ac2186953d3 |
| SHA256 | de06a56f2dd24094ca68fbaf33e45794049b6832082eeb663307000f6edf45b2 |
| SHA512 | b17729780db2990c2849b5aa9fffe6fc8836dfb2363056f01a0d2196cff447a55cb6725433bd923bce8dd314e982e720731b74e2492d1abd1e863964668f00b7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | a4db52e7e4cf47ef81fa70df25e52e4e |
| SHA1 | 20e136d73fc262c9b4018dc2ea8999169a700890 |
| SHA256 | d26626cad124593d636d0872baffe30f55f0144ba2e92bbe038bdb943fa00fea |
| SHA512 | 149043ab4ad9638c90ba42b2de6ed60469bf0c1a4c6229f31500b0b08d1135e6e253aa6b74438825d9a0b571e11d4102470347e55178da386c715a384493d858 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | a53e3551531e031722b27116cd8621c5 |
| SHA1 | 553a2c041e5e87e1e4ba900d0782cc6e460b9d5a |
| SHA256 | 9529617982524f907dd55eb51141cfcd617241b8089dc2f9d3d2fb8487717b53 |
| SHA512 | 2e63e08fe1969ca6c8f0480ca21019b3104d73c902a2e1ffd5150e11801786074232003d0a641fd2030586c90fdd4838501ec42eb3d57cca5ef8e2f5bb557738 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 050b52359373deb366977b9ed6546bf2 |
| SHA1 | 1c1d88bb7ca0d6388798b1b0600bfd90c665acdf |
| SHA256 | c42097e44c821006e7098d4f670636eb1942e7cb3e98c99b6246ffd8b0425a4d |
| SHA512 | 2160c8a1b7b3177c75f827b686bc6cb8785ba2bc7912e3c79c571e1b7840a59ed809ed773d3fed702d08cbf809566b3bf150b81e167ff618ff09f9c38c92440c |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 7d31c4406b46a1744e3ca993f96eff71 |
| SHA1 | 10707ccda9f6e474098aad06b2a531ccb18e5a99 |
| SHA256 | b147eee154e2cc688c2e593d5d0636b6ce371f7dd9ec45973153fd44a0b269dd |
| SHA512 | 1275ba226abe3132925243321b3b6cf98228b2078153ee3782e4e5b9b5d5db81e8d517ca190d84c7f5a77e7213df696a7a99e70bc2d03e6becbbb279d3759b1e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | fd183d1fdaa6e5b0929b71dc2407c5e1 |
| SHA1 | 905b1ec4ff6daf4389ae1ae8453567325f3de471 |
| SHA256 | a624c14aa50e8b518b50430fecb25de640909bf4631e9b254ac637081dbf1ef4 |
| SHA512 | ae911c5cb62343adc9a8bce0705728fbd6014d5010dcbd4d30e37c95f9580817b780938a15907d74321e6138424d13a004bdbffacd8e17947de57589fad1ed90 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | d93388a654655f386d7136e13d11ef27 |
| SHA1 | 4c59aaff38670b2b32dafa16e808b83cdae6becd |
| SHA256 | d87cc43c39f8ee7684d7fab435c3061e307004888d2d3fd3f5030a8f2c265d74 |
| SHA512 | c2faa71240ff4f5fc94481f928e5073eac3f469561676cf09818d68ddc589a71d9d2af7e03652192f39b15eea2698288ad975d4d0787005dc115a597ed99d391 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 99bbc4e7ed518d0574c1de42634a825d |
| SHA1 | b5c74f1757ba2e2c4fbc3b19723cdc3c1d44ce5f |
| SHA256 | 4c9448b092fcb2933144b279422f630c7d31e8f22bb9a08489c71e0b7e1dcda7 |
| SHA512 | 601cd93d7a94acd652eed089a7c4dbcadecd1d5b70a2b7fb07fc79106893e94548355dd3d69c81ff1f77e93f19ad56d85b8ac204d60335b52d6569a95eb74cdd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\395ec4b2-d327-419d-8242-0bd5bb22b7fe\index-dir\the-real-index
| MD5 | 10f5f5ff31eb8e005fedc4575cdc96da |
| SHA1 | 77dcdde12955406f73f2dbde0aece6dd4b64c70c |
| SHA256 | c35c21c5315ddbdeff1fcda23141f06435a06058dbb51123316411c7bbb91526 |
| SHA512 | bd42ac8fd99446371374fa922e3de60584d01aa717d7a90e20487785c05796c6b537f98a14b4923e84364d7fcf2c8eb56d974605a9746b562ef3dc5e675c9ed0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 92312db5f5d529a7feb904de4bfc4c36 |
| SHA1 | 151982dfc2106e6677f4c7f79f3f9d4c750da395 |
| SHA256 | 472c7e280e455e967d715b658adc319518dd93ad130571af8609d95921ead612 |
| SHA512 | 9debf4cdfbd302ce106e32ad65689d64e91eec6eb5b2bf56e4a0b1babfeaf5f63d4c13fea6ee5653800b7f888f0f62311b624dd9756546aa069dbb1666473065 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 3204ec085c8ca91011e5e24c456e2ee2 |
| SHA1 | 790747742672fdb2e81851395a622afbb10c678e |
| SHA256 | 3393671ab02ce844cca06b931ea68fc5219102f66bc0deba7dd665242074ab41 |
| SHA512 | 0c57a3a824bf853bf0b66fbb77be91aae31d3c080dd50126e16b2300370b16940806f2e8a8c6093efbb2328b3c9a5c8d33406e08d39a1f428673192e7510e4e2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0826f5a9ad0392025b3f67984c7f1cf1 |
| SHA1 | 3f0f80f2b75ff947aaf5298b47417251e0cd41a3 |
| SHA256 | 0bf8f486d42b60b45251f53e9c91a9b9034f2a454d8880fb15ec657789357029 |
| SHA512 | fbcfa7059195b1b56f29b0d2d8b079943530b44f74ac784d680767ed7db01cd41063cedf5e71c3828c16d80e1c48439fd8b0511daaf41cbbde435cb73e946d3b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 7b0c970278bca2eeda967f246ebd7b19 |
| SHA1 | e15452c752801cc7efeaee59c68ebb5797e6fe88 |
| SHA256 | f31dea4a434d7815ab9cc8da14661f6ecfbd372f9922e902fc019da75be71b3e |
| SHA512 | 9cea770fef9da275e440e39cfacfd9cb8c22ac2723b1656360b85589be65dcbd67fe43b0fa1740479ebdbfa00af8c2c4068e23bafb96409733394fdba82ce492 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | aad1039b33593d9fe9a9b6f820bbdff6 |
| SHA1 | ed90cac78fa1468bd03b0a866041a0952b204534 |
| SHA256 | e28251b452b3d7b702097ac3849910abe8ea2bbb9e113ba5ff70189f80387ec1 |
| SHA512 | a5cfc2581f717196e74b2a4d1adedeb487e52ffab2a4898cbf591ed2dcf5a3fd9f6cd5721d211f2fd2387a2af92ade61ebcf6948845b3c8395cce94fb465bc13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002
| MD5 | 0d89f546ebdd5c3eaa275ff1f898174a |
| SHA1 | 339ab928a1a5699b3b0c74087baa3ea08ecd59f5 |
| SHA256 | 939eb90252495d3af66d9ec34c799a5f1b0fc10422a150cf57fc0cd302865a3e |
| SHA512 | 26edc1659325b1c5cf6e3f3cd9a38cd696f67c4a7c2d91a5839e8dcbb64c4f8e9ce3222e0f69d860d088c4be01b69da676bdc4517de141f8b551774909c30690 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007
| MD5 | 5dea626a3a08cc0f2676427e427eb467 |
| SHA1 | ad21ac31d0bbdee76eb909484277421630ea2dbd |
| SHA256 | b19581c0e86b74b904a2b3a418040957a12e9b5ae6a8de07787d8bb0e4324ed6 |
| SHA512 | 118016178abe2c714636232edc1e289a37442cc12914b5e067396803aa321ceaec3bcfd4684def47a95274bb0efd72ca6b2d7bc27bb93467984b84bc57931fcc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 9a8a1f7c009d9af6ab3a4e6de2825ed2 |
| SHA1 | b365307d17ee0e7794b317370add2e04d99b69cd |
| SHA256 | aa03577b4ca280aa45f929c3ca4fc15170dd9a75d5ba7fed45b57a360533156e |
| SHA512 | c62230f879c2ea15fadb86a9f582c735e4d2303655b596d6e8e10e958c44e961422e77fe322e0ec0d885643be976ef35b2c91b04ad0d41f7e609a361b3fff7a7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c52305d9d5c72f380135a9d1dcb2dac3 |
| SHA1 | a6b81822ee5c94f1fd5e8b4bd4f7fba278501dc0 |
| SHA256 | d4b9bd63676917d1ee3744e49ae94df2618685a8e778fd64a9a5c74691b0745e |
| SHA512 | 637079d2c959fb5ffebc2810442f550a7cd88e2b522ef72e146fab8401f89b0e1abaebce7ce01e2e48460ef998986d4c11a982fccc9a1250e349c08ab3d8d47b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | cf08bbff6a4bb404e581626db5ced3ae |
| SHA1 | 31138155a7b7413b7038023e0baf155534c08eea |
| SHA256 | 6db04cf33a761179f66c75b62d7b473de698dd911f045bca2e5bedf6071a594a |
| SHA512 | 003cf1d74c81fc254c90f0d913cdfc040b60ad34d7107273493ceb03c44e52270d6dc4089a3b3da17ecee640c7989a307a2cf9ad65556c305c3065f660811453 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 289fc6925ab26e073b43b0b6eb5eeeba |
| SHA1 | 9037d057f2651d3e2b04958a19785af736bd585d |
| SHA256 | 013fe7ea9de85de5038489ac40bb7636617364b381d7bb2152e90a8ab1298151 |
| SHA512 | 06e3f2852d94e4b125390a0b989083ed3acccd8358e309261563c19ad789f25badbfcfd5292900e690d9df071d404de00f08c16b4b3c101edf3ba4a679251221 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 5a6ee8b8027a466da552cce14aa43ad8 |
| SHA1 | 11a19bc84dc48e9840863281f3dd108faad8be01 |
| SHA256 | 80908b4a018add432434fca3caaa86da1e2ac0c2228eb96d67ea2e7a39ca67fb |
| SHA512 | 0f4bab9ee5a1f09f58d175df20f8047babc68266105efaf2da6fc6e38955950a3fb16748fce0cb735f82139e9e232870bd2d2bfb3ed8e1c24980e10dc718547e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | b3b56f809e46ed901a4c790c36e44f7f |
| SHA1 | 0ab9076cbe2bad052b646c9145ab08c95eaa76f9 |
| SHA256 | 25188735048de72e2e17f73775f3d9f986274435245bc9db57779b883230bcec |
| SHA512 | a81e5c01c82a0bfd2a955b7e96e9f9fc640ffedac04672110254c0bbdd087320ea7fccc4a1bb3d7c910d44b377907b37a1c0aa731787e60b9e96fda4f012fc9d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 64676053c7bb82c989316f48197945f1 |
| SHA1 | c98c5c9ededcf030ab0562e9a4605cff11f5d452 |
| SHA256 | 15721ad2e5811746804c9f1bee8be66d6e37bab715c6a5d62110124068a30a31 |
| SHA512 | 7d868c372b9d8d8109e420a25d9849fbe434032186be241be6cfc6325e461d00379d4e1d83c88d74dcd4a6c5a5ce96b2723a578867966e36781329b537cc7fc1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 935cc179f48b6f9225ad4fe8d62154eb |
| SHA1 | 1db204789be702c9a14c2c9ad240a12416cde5a7 |
| SHA256 | 5966732a703e802b53c413a792ac6f8a26473146017b7374b5e522ef44777343 |
| SHA512 | 83b175f614197b81a36ee6132fa71517dc2be51efca0efa68dab5261688284752eec43e915957d26005a980da913ed3dc558ad79ecbf5469fa120bf67e0a2404 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 15e8ef65af6bd3e545fbb85c7a69c0fa |
| SHA1 | baa5ae0ea2697ab3bb48aab89a35ed5d0a16df4c |
| SHA256 | cac0bef67014f8b346723bbbd53dbb3417bec219b3431472ecd5720c3cf7a3de |
| SHA512 | 616321f662c12da76dc99c671a1d039009317f3591f16b0ee18b5a059a08d4a1877d27cf3c78666dd3af7372d9061a1b8765fedd55972746b4c8c092d26e8db7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 549e4165eae1ef551f1bbaff8b168443 |
| SHA1 | f6eb5362b0fbd8ff86bd622c0153a5be13256a32 |
| SHA256 | 9d10479ace1ee40e23f571f2dd7ecb544436c0167645750133b71db4a264d318 |
| SHA512 | 7f2b0b22c427c425105aa9dac2cd364d1fea8d7904d9e752d4d168aa6fb49ea6bb39cd5d075c2d403e2ac30393578610a12b717dbeea80a0b8eb5b4fb4838bec |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 049efe57cfd869d5f496d1a552a8813d |
| SHA1 | 692caf6971a1d649479f417915779a70b88b25e9 |
| SHA256 | 1ff75f3404e5a7d87d3cf6c2cb606f21f020cee3c99ef391ed1c82df9c68984e |
| SHA512 | 10f13aab57aafd7f42f5a43d72978af23c09efcd47d13a2fb06d5ee14e64dfdcecbfafaa9f73fcd048ff9ced8bcf9781b68b88bc4b204734a60122a7cb2020dd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a
| MD5 | 68f0a51fa86985999964ee43de12cdd5 |
| SHA1 | bbfc7666be00c560b7394fa0b82b864237a99d8c |
| SHA256 | f230c691e1525fac0191e2f4a1db36046306eb7d19808b7bf8227b7ed75e5a0f |
| SHA512 | 3049b9bd4160bfa702f2e2b6c1714c960d2c422e3481d3b6dd7006e65aa5075eed1dc9b8a2337e0501e9a7780a38718d298b2415cf30ec9e115a9360df5fa2a7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009
| MD5 | 3051c1e179d84292d3f84a1a0a112c80 |
| SHA1 | c11a63236373abfe574f2935a0e7024688b71ccb |
| SHA256 | 992cbdc768319cbd64c1ec740134deccbb990d29d7dccd5ecd5c49672fa98ea3 |
| SHA512 | df64e0f8c59b50bcffb523b6eab8fabf5f0c5c3d1abbfc6aa4831b4f6ce008320c66121dcedd124533867a9d5de83c424c5e9390bf0a95c8e641af6de74dabff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 79d9fc8fc03ce8c189dfd7bfb8f214f2 |
| SHA1 | 14d3b9240eb139631e349d5771906bc935d10238 |
| SHA256 | 9e666b61ecefb1529c01b452927d4faed9b697e73897c175b0e85e8ba1125858 |
| SHA512 | 3fc6487d06010a6ce1697ec80d6288f0633a33c17abc5741acfeef82af1ab6640f73b8066a8c3eefd6d5d468bab370750a9455b91b9be2ca59bb4f48fa8563ae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 25b392bafa7331bcd58b9f4080209ae1 |
| SHA1 | 23fe4eabee47900fbc6d6eba047e2f660d307d4c |
| SHA256 | 9093fcd2de75345b77fb7ed4ccec64602619706aaa6eb9a90860b80ee6baadfe |
| SHA512 | 88661c963e27108b27ae0e5f1d3eebe7b3f816c86f3a027bc3a8cd6b21ab84459c6ced8f4e28cbeb8ea144555116c949e3ec73bebbf3fef4828ae6094f60213f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ab7101171a3aaccef92b231d21ac9b1a |
| SHA1 | 1ddda992781e2feca667beecf75b3d06aa8362eb |
| SHA256 | 777e3ce09a76638708f7f0ce945296c37cda73031967882b673f39464d7c4da6 |
| SHA512 | 6732f597071ae557a8abc62f5764a0ef3ee1506f46455fa29070cff9b1948c543044d318fbac70b84a4922e2d944b1fa21a31c8b7527a0389a2dc1631d182c21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f3ae0d23e488645b_0
| MD5 | b02de40098f235481764cc51ae10999b |
| SHA1 | 8a066b8b000362c4afb71a55515089bfb2fa0d2f |
| SHA256 | c57c2c658828c5895bd8e0a22c55c893be3d4e12c981290951de56fdb2b476a9 |
| SHA512 | 6cbe8caf759614e164d65dd3b4240057e000d1a45693d5cdada9d2affbd00f9c2dd9992a1fd0ccb22fe3e11bc2ab07f5cfbdf3f07fbba2e96f19f90a5790c90b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\796a28b7586120ad_0
| MD5 | 6d38491c27f789730a62abbc15ef38a3 |
| SHA1 | 0de1e421d5988191df9d7d6f99f21c36b804c82e |
| SHA256 | 6dcefe121ab0a05100144b4c95fc49923430ba326c831d4931768f0c08869b30 |
| SHA512 | 6c70be6deb25df21904f418047297bd43f39fa9e0fb66f1b0d91eba00f315681c2f59712a9fe19e0624a1154b5010d01ceccea241d025a4fc474db86e9bfa9cf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6892666fd3baf497_0
| MD5 | 961d1e276be22afcf766ea2e764d755e |
| SHA1 | fdaf9c3cc9e0ff4883ac9053bc3f49717746c0dd |
| SHA256 | b6aa67d19dec90ad85687cc506436f60c87fe228d6908e62268b728cdb0e1545 |
| SHA512 | d7261dcfb29a67ef3f8daf6d832807c69bba85db405d2130192b8fdde68c8425270a1d348ed2ef3ee474795801d77313884a83fec4163102024e7f0b37a5cef1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\61a0b4d20ae0e222_0
| MD5 | c2c12f9de47b4fd6b8c73b3a177174dd |
| SHA1 | 904f22660ed3267e85db955ca27e1463e7a81250 |
| SHA256 | 810d39cd4de41f22a1adec7e7b8c7df2798500985984aeb822a3be011b5e008f |
| SHA512 | 4e0652dbefdc51e21537692907446eb9106d2c02a9b1221cec80cc84204205b710b3a9ca828008f072282e6f490aa38db9b57e4683617e7ca8dd912f66a661c2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\77553c2a47f1a2d4_0
| MD5 | 4276f91ca99d4bd70bba8f3d2df0653a |
| SHA1 | 190058a09956c9cb15e7a6ccd3259a59876eab4c |
| SHA256 | c6d465cfcdf95f69319dab87c9503df7aa3f3ce07a28f8f668bb306b0cbd040c |
| SHA512 | 28c72f43b421d94ad2cf54cb87bdab6f70bfe4bcbb892992bb6572431683f9acbd6bfcdf4b854eb78becf76c12bb6cebf204c18e1967ff8b22bbcab2c9a601de |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3a4259a0181983ba_0
| MD5 | 817ab9f98b637396a9452e9b8d4b1676 |
| SHA1 | 4f7d0911623c345014e348261bdd2a39a17674f9 |
| SHA256 | c7a92ae0b94a31a1219f3b2bcbdf8dd057ac3d5a64eb38f620e86da59f8c2198 |
| SHA512 | 38d6e7810f499010a116f5def8d8c14dcb5986d39f2d14d0cbc3598234a3e108e89cef3ba92ecde815807d16218dba75dbc9da9d72283cd2a1cbab5595cfb7d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74b88724f60b0383_0
| MD5 | 319ca3b77a52757e67e6c6e3bfb48402 |
| SHA1 | 90e2384569e3cf15c84cd4e80e358768d7d82c47 |
| SHA256 | c51690cf0ea1cad8cb86dc1c73c2263de2b24bc732e36049d854ca1909fb81d0 |
| SHA512 | 69d52ffcca773361b674cc964d428f7f6bac75f621574ab7b2cf25768342294a0bb0e1be8924bab788cce867b23335926419a654746a7c2dfd038ef1c05415c8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\25c90b4fb1c6ef85_0
| MD5 | 9b071c106f9fdeb9f31a55db7bada8e8 |
| SHA1 | 093736213c7ae9f629eed36348368b6b3b475845 |
| SHA256 | 9a96fbe135628d08def445f176f8d695a908ece4515349ef51242b425c82a0a8 |
| SHA512 | c0a60aa4990f7b577a1874495fab4e7f3c8825b7d17a4977521ea4911a955dae7e1473d92b917691fadc953716337235460ba04637ed719e2987244adc8e7c48 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\71d68e68ea4089fe_0
| MD5 | 521feb4afb61e49ff83cc8221bf64608 |
| SHA1 | dc18659cb96f82ee293fb22b08fe33691074250e |
| SHA256 | 742ee9499ac738ec69670c720b4dfa394292cacad851c4a332d6205dea74eb99 |
| SHA512 | a5f1a7dff70c83b30905666ae297151fbec9b77f77a53f5079034735d0b7b18d9ee0280028a74ffff073dc1f7bfbb6e6eee161c21f908c146f25c4972de4028d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2692617678c042d9_0
| MD5 | 8fa46029fccb134c0fb15e61e52312b3 |
| SHA1 | c45c9deb547e30a22eca5f5a6a6c262fcfbb30cd |
| SHA256 | fefe1b76e4117e84db81a0fa4a0d1f38953ff03341635fb9e69772687cee8409 |
| SHA512 | 80ddaa8968f874500e7fc692c93983acdbe6838285a831d0318d8f3b3c20028050cd4d6ebca5d8126ca11363e5ac5106edd0f874c3e0769d3fc7ec184946241e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0bbe00d9bf7b798e_0
| MD5 | 3bb9f3515b288f5a5c6ce9b821bf27fb |
| SHA1 | 0f505dfb7580e99ad5ef8e2c3829613666e7c967 |
| SHA256 | c3a3d10d666bbc217fa1165e5f1e51fd32dd4968e4717c9ee41d5f99d0a4bdc8 |
| SHA512 | cad9e3dbc51ab0507449a8272b71dbc607fb12ef444c9eb148b10113d0a390b2b8ce34b009538065775cdf8a6b7e23aa3d2de406072fc10c4c3bd0bdf05632d6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3a664b67dc903cf4_0
| MD5 | 9defe1a106a67e3c35047cfdab29eb2b |
| SHA1 | e761e9acde3f7f625d080ac97b031bb966c85f5a |
| SHA256 | e3e6e7b7a1ea1f811a0fcd4ee0a2d39a4b9deaf2633bef1bae3b3cfcd52f5790 |
| SHA512 | a6b747bb319fbfd297b4e07299a24a299f60d2c9ee6c736c4412537237f87e76504295e0bd682c847904cdead27d9e6eaec89fab3c1d5312845402edb2cfca18 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9dbb949d27873cbc_0
| MD5 | 54f0eca1c646879da00a00b4f4d2d374 |
| SHA1 | 2ced127be8c21650159345d044b148dc5229ef3c |
| SHA256 | ca00dc75a9b2df6d920b1534ee29d3dbc30d6a0e44a3525fe5aa73e37bd0d0a1 |
| SHA512 | 565634597b871163bf9634867ebfa642e7b04248ab80ad19516eae93e98e2f9542983ee474b0e350002dcdee95971b669b2faecf62529a53a04bca514d8e7e8b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f2076e2a98754e97_0
| MD5 | 1867845d7297ac27e0c41ce949e82ce1 |
| SHA1 | 1143021ddf801dce04178e83ee745392511d379c |
| SHA256 | 7b0634f43e479b156a987b55702f8e0c88a390f4c73df48e7dff42e197c9188a |
| SHA512 | 398002892c4929fdeb40a5ccde5c5c3d045656b6831c90e4d41ce52b7434333eeaca3947a33c475683242620547eacab1748a2b41f59f5421e220cc1cf5c1d9e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cd9a47d844308cbb_0
| MD5 | 1cf536a9952a3f13794afcecc4883935 |
| SHA1 | e677adc46d6349ae4ca4cfc08f23d056f3144b01 |
| SHA256 | ea5c9b28c00dc6ede8e6b04284fbeb0c7002b8b6576ded7aae0b26b5007b29e9 |
| SHA512 | 6009cda52fbbc24c4b78d59f21e27383bc59dff98700db3384269a98d90ff8f3c18d3ae5b23b86d8db5a8ef0ea60cf3c546f07d624beda06990f059298e67ba6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7cf9843337c39c04_0
| MD5 | d8059709aa77802f0ff1b7d724767b67 |
| SHA1 | a72240b49d7f3178f5091ecd6908472477cfffbb |
| SHA256 | 2ecf46ae83c3d8a6675d81499a4ac2ad484982971706ec89a5b341a7616d02ae |
| SHA512 | 0c91d26b3fd1738429c11994036b54151637fe573f77c201b7397fe0740acba7ed69b64676bd49abc546c08629b51f59531db6cea2be871b6b050c5ea6c5dba6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6db290dce274a012_0
| MD5 | e39fe257bba71e65b2478e574eb99b6f |
| SHA1 | 3b65152caf7ac86dd43c9e2c86fafcccffc403e0 |
| SHA256 | 7406af2ceee2ca1677960973b694ca0bb8b5f3bfe9e4ae5a3b9d26dc369181d9 |
| SHA512 | 57f90c488b49be13fcac9c3b8ff24c7742a1d1e7b1b462cf66bc0c8bcf2441c3d86e3f60175687654affb94b1481e24f0bc1a611e23c24a4f610fe377f50f242 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a28b766f2e67bd61_0
| MD5 | 62aa1c5dc9f6dbbeca2bd1b32d69585d |
| SHA1 | 5062cc58bff2691bbb0856120d132f31f7c637dc |
| SHA256 | bbae1c2d9dda6c1105090162471ffad65814d71bdbae2d5be9d7ab12f4acfa72 |
| SHA512 | 1364443fc7581bceda55aa60546df86a3989f24da00a49f28a36a11a981e7fa96b34d0326649a9573b339c073c1996e4c4ebcc524c21fdd5c253c31b7d17d662 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\03eef0e77feb64d4_0
| MD5 | a2ffcd8f43c5d74e80b9f7f2087c01a6 |
| SHA1 | 2fc965ed695eee7efdf5de9211a73270071da3b1 |
| SHA256 | c935dedebc63ff05f764fd1f1c6e2b0c9323455d17ce4e473f99652680ce942c |
| SHA512 | 99e165eb28855c60060e6b812174a36586959c6a3aafdc1ee60c22c0ed56a7646963697b228c426a286a875e70545e465213e15d68ef08a5de8006b114399565 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 09db353aa2063ddb6390f26db8e1bce1 |
| SHA1 | 99d6ed23719a49e6fa31de0b5eaaad3412c0c34d |
| SHA256 | 5502feee2b6120f3c0652fe44498bcdd0526dc6440050b3c7aa19c246d9466c5 |
| SHA512 | d94226c549028f91128d3436b3a70e3296a1622d71ed01c7a08b3ba6399d841f2d0e6a7249bad6f1b76b61a82b6631886fc9670269ae2aaf9fc7546d471baefe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9bd3736399b43b84487dddbfcdf66edc |
| SHA1 | dd29df1b26e236b1a5f921bcf4a0cfc19b659dbd |
| SHA256 | ade16eb40e906bc38ddda0bf2b0b4eeead4dc9d0551a825b4c1e12aaea346d6d |
| SHA512 | b146d3e4fc97d8278d46cc1e2a58679d7cb4384d39b1cc766d24ddb932f9535f7b8319e8bdeb190b1e7afb614b9741f6efdaf89173f3e85035aab1cf76c25066 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7a68d718db69b6f2_0
| MD5 | 76b5ddebfd9f03591c9680ff4f19c7fe |
| SHA1 | 4d2ac547fac9595324cde871d02a39ee8f1e28f4 |
| SHA256 | 858b4b1d73221c5ce8ac7df31859f933ef37f14419aa58de10199ec8ee5b2940 |
| SHA512 | 96bec5b9bbf343b3e300ff366a6b58a3f2b574c5884e435ec57f2000d552de4a45d2b3ef0fa7d172b46f020a3ad0b062a5bf381b95aa513aa1f67e40227d77ca |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b5ee1e30e210d193_0
| MD5 | 8b109ddec7aa64d262df7a83b846b9a0 |
| SHA1 | 0b3019d900439e732e3ab53a8039618c2a4a2073 |
| SHA256 | 3b645cc921284f1912ac73d2060c78d6184999a7586376b224b1a919458145ab |
| SHA512 | 892be7ff6535193ed551dcebc28040d8e00c5701197d536c94c4625848f61e258b54e07121f041ad88c608fee78ea396133defd9ad630b6ad5bb50d9e2bcb4a8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 890c7b7e9b6c8709d7bf8e314bc677bf |
| SHA1 | 162dce981bcb2ae195a920a465cce0268f597707 |
| SHA256 | 64df48dd6995ef556012ac63685230b901cee1207d9dbc9d2173f69f4af031d9 |
| SHA512 | cb1af25059931619a31c9a0e9aee11c8566eaed8724514e2c1a46a817579c6c2e46ad4d8352f36b8a2e9653bbc1ec5b5426637c5c02b87bb0fe30b9a926a882f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\JumpListIconsRecentClosed\542af7ed-8828-484c-b5c5-ea20789e40e8.tmp
| MD5 | e0485c0d743883df435265f51f5934ef |
| SHA1 | 2be1dca331fcbce9e08f7c58abc23a49988590bf |
| SHA256 | cc284f9755742791d39cfcaf4435a39c727fd8469bbaa647809f3b710cda3cd3 |
| SHA512 | b518d0774e6ce8cab200d741be0cda0cb3905fece843bd769e0b64c437a903e204b5dc0fc6544b425d86861969a58f7f2aa589eea8584ab60b056183c1b551ce |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 25754b25682c8e12cc5d6aec5cd8ce97 |
| SHA1 | 322ef0901f1adebfd292f56d3e08978e94321d14 |
| SHA256 | 399f0437d4716d26eaa38529921b29ebcbd36cd84248168d9ccc54ec3db01918 |
| SHA512 | c1024f9a8a136391427bbe4d824c55595545f50db63459fb3a42975a1fb9d020b2231256071b56c50b936c3b9c9bbeaf3e93ee7c2009854db3455314d84ae840 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a63b4372b9bb2a4ba9bcc16a15be5931 |
| SHA1 | b5058ef05b4eef1d2d1087b1270202a620e8d7da |
| SHA256 | a5fd1e864064e7a9b32c5d074ee59089ecebb00e0443f0443df17fca152d7269 |
| SHA512 | 38f5f42510b5f9e938e1ed55208b0fcee7a52786e4701f70b2321bc2152a8bb749de5eac1926b5d39b9a2bcf98ed4ba0a1992a47322c4665afec91fa292827a1 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 7d7ba5067f8f6a514a02ab4ac737acfb |
| SHA1 | 9aa06ed69d06d375598f4216f5d2fb6d0ca564d2 |
| SHA256 | 8936d825ea6bf24bac77a323447166e3289ae3a91c77d7a424e34890636bd2da |
| SHA512 | ea0113e97b30b5895a6abccca7b4ed5bbe603e18e4665348d65a7c0ced86c7404260e8b722ff75b7d6ef3beccc0e5f2f579f5c9335cba4e0677c810d6533f306 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0d5528c72f4a20e263f7e899f64963cf |
| SHA1 | 69b3ee8728e3537c076cb841fba5ee945b8b9eac |
| SHA256 | 7551909b1411c3839152fec99456cfdab99d3bf70a73917d0ebe93515d511205 |
| SHA512 | 480b49f9598d8e7491c670b5f9e9e75d864c34fa3dde45297f93f7dc3d13c201c10217c60e52c34f559be5ba5b8e114bf9ac6a32cd37a4b60d7a31595366446b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ea276ba6a3552a85_0
| MD5 | afacb73a2266c6bf9d84645869d2f505 |
| SHA1 | 4d05d9b373218c16e74ec1d09c8579e74d7eed85 |
| SHA256 | 85175b01710ac02a8a87b94fbfffa5456d202c750b926bca0ac504e733243420 |
| SHA512 | 8cee36556c057c4a7b8a55ae5790d6ddfb5e8dacf3f93d2d79c5614458d88f95b11578c9f7a9cee862a7d3ac9cdc69f957d631ba42fb61978ddcd19bbace89da |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\71d1922197af64fc_0
| MD5 | 6c3a6694f4a8e1970705c90c5e4f33a7 |
| SHA1 | 9ebc6e5b10b6dcf5a609312cd28f6c0ea3586d97 |
| SHA256 | 2b676984c4e6718a88e08df11e17b707d7bc0bcf4d9397404707bbbc5d0d2bef |
| SHA512 | 8f4f59a40c4f47d8f2cc53373a98e0a405fce600060d248cf0bd8cbc7295982dbc1a4f5a3422d5dd2211a3d99e2023ea0a00716950ab4d2060cb20e21f5a6950 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2b2208e4ab08dbdd_0
| MD5 | a5a53cda1f7b3abcb6c23e140d58da26 |
| SHA1 | 2e6b2a59771854510b5f7539aaf3510765eecdf0 |
| SHA256 | 7cd0525866c34bac2378f6d443977a92295a24061254f6d168e764e6a0d79bb1 |
| SHA512 | b13ad3944b92d9fbad16fc5c0936c46a7e0ea87227ccba836648205fe7d500e80bfd03dad484b48677b0cba1c15fb24736e03cb72b020d567bc1c69a85cff191 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1a914eb5fc51fb84_0
| MD5 | 8ee5b67d6bd88ea448edd1840cc86a11 |
| SHA1 | e1138b9a6baae568052722e874c6b3d70d25022c |
| SHA256 | 719a0acef6e85d1d305fdb08af4463d89a24610273818da869a033342d06ba88 |
| SHA512 | 25ed629b3c423b68a82892eea4b27c6c134d3fd2cc9a8ecf4758a29eb0f01fcc247161213e9ac3d157dda0288435d08d3123e1514b216084afbfa00667c5bb0c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7b7d7e364de1775e_0
| MD5 | 7a2ac4b82a3646033f148e353570c044 |
| SHA1 | 451dbed4b3fe7b8882ee775fb25e0006c3810ab9 |
| SHA256 | 27c453da3492318fd538500ca02a967a611da497c0ef09f01d492b0bec052bf4 |
| SHA512 | 3260fa04e5a76590f9ed648ed03d76340b068d4a82a774d111cde940a4957d29efbdc16b27dc71adc80a4987b85f53608753b6355871e2cd95973fe60de6c15c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\90d7d7591a1b39bb_0
| MD5 | aac11b00efb4e96067ccb8186fa435ce |
| SHA1 | 96260d3dcb30e6deae2e22b617972c2a64aa67d3 |
| SHA256 | 24e6e00b3464c65d790601605cef108d8eb3f21045476bce2acfc24c831b601b |
| SHA512 | acf85c291c180cfe8cef92319b99ae66bb7b4f9910a23c96e4f2ac0668d2f31db12b20a4f6a1826c8a68325150860c7bdfeafd706f7a32287690580999559230 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\37afe38eb817b647_0
| MD5 | 3796b3b70ee2a5630fc55040a65affd7 |
| SHA1 | 00bc1c3933c652a28e0d144e601fe1f9269f949b |
| SHA256 | 52537c8a3ad24cb9b762edcee8dee4401d2cdca7db1f69eb07062201813c5d06 |
| SHA512 | de7fb9507da9d718aafbbdb5e649a01a34102b3a6dc88a9a53ffb8ee34d233798421ac4d4d44fc807c99eec189992057380bd18d654d513e54474220e6aa43b3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\53ac5abc87e80789_0
| MD5 | 8424cf4e7838ffac2b36b30d3a20fd46 |
| SHA1 | ba85c5b6bed222448ed4931a55195d0f8bc7f08a |
| SHA256 | b0982b6464a28897143eddd7faeaddc3121bfdf871e2728e325a2e33a3154090 |
| SHA512 | ac881b8d9829ab3bc5f4d6fad203f50e2267abf7fedb252841cb6523bc0310609bdd8c9b30ffd9591185bd1521677dac3f4d67e8a8d7dc105cb16f812c482e29 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\be6d12311ce2b399_0
| MD5 | dfb9827416ad92e8a1ec099cba1993cd |
| SHA1 | f481d919e5a4adbeb845e344ecd7e0928fd37c8c |
| SHA256 | 08a2d513d791eac12bc3a16d20f752d5d126928714be02b3a508c18f7d3321a8 |
| SHA512 | 8a14a08f2a7516005806f82a9ba486b5c7a2d6b81f041005b9654c972d070611dec139cd14aac383a508eb5ed015701918fbc07b89d26d73deceaae8222bc510 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5dd1e579c9681f95_0
| MD5 | 69d7f3234a21283a4b0c500cc6e3cfbe |
| SHA1 | f527baabc188f09c2290ecc265878b7cfb48d996 |
| SHA256 | 38c51266cbd2c857fa5808f4f7a2dd41d4bb72cc82089539a2db98cf5058a1f4 |
| SHA512 | 260d56839bba682fbe6722fe89b9bc70e8341992b05d01022f17d70f51898ca80c3f8037023147f4d8621e568273555384d437923b738d94e863e6ef4ab10c32 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f2e4bbad99a372cc_0
| MD5 | c25040b4b6ce838e1cb179a9f9b73927 |
| SHA1 | 763379145339695c1069da4ac9a4aca9b4100f93 |
| SHA256 | ba1051985710e9f5b7e76e33643cf3afd0cb71dc06110287b79e654bc5babaa7 |
| SHA512 | 4cc47e9db1e0137afab81a51015cf4235ebf72bcaeda9009e458c2ec0224427770d8b5147c869d07f5189d4ab71b7892b70dfa0dd6d6eaa78ec126f5193629bb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45a16ff6d0d9ab5f_0
| MD5 | 5cff34f57e4aba72b3d6bd4b582fa490 |
| SHA1 | 9cbca85c79e103793ff398e465f607ba85851458 |
| SHA256 | 0764880e9f6048523558af1ed96d79dabba77278008d37e6847234f53eb46675 |
| SHA512 | 0ee0a71d8d32915076cd10ecdc406603578780c2b803f413060b133dbee5d1aad1a2364655d557789f36976fc989c223ea4a191c798980caec8273adbf1ef81d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e146fd968644d345_0
| MD5 | 80846ada1513f6eba9bc8cce9f9fe571 |
| SHA1 | a6ef85fea6bbcaeecc0a01c3626d200ce15ee2fd |
| SHA256 | c84b50c9aba6b664c96a0f9d63a0cb3cd31df1e4c3c69fd0ecbfa0e5d326daa8 |
| SHA512 | 04f403c99e32d4d78529a8892c88c08360747daa6c52a83f70ccfe3fb9d493341c3eee6e346fa80cd5a74b03c513f41f88786e0697e5e03071508068c68facdf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\766094f4b47e839c_0
| MD5 | 726d90d0cd637d04fc041f8ca63f713d |
| SHA1 | 0fd84908a9d613b191671e1ecd13933ad454e745 |
| SHA256 | a18fa50baaf3a0ee62f3555943b4a68b11ddb0894a9beb246c6473f2100c5e08 |
| SHA512 | 3e021d1210c87517b1f78b0d679029d4812c6df0ea02070100e60e0dd26a331dd3429079cf352f9dd95f95fb4705ee6dca98dad696bf0aa1ec9f40071fb123c5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e9c7e700cc3e33cf_0
| MD5 | e5e905efb6544d43cce3cf3747c619e9 |
| SHA1 | fe7e201b1a378fa0dccba06af2960c8eaf7cc908 |
| SHA256 | c9c4a7a81abbf19d55e67acc91cbe23b6621e1943b4e56c6b5919c939169201e |
| SHA512 | 705d8b2e846bfdd751c78b0c069850d22a20fe4d7cb1d8c6766d27c940101505eeb1a870b48c6a727170a1959dad8e550c54f51c0b8b83274e5cf59796b4b367 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\764b861818f174a0_0
| MD5 | b33b7e7368f0128876deaa1a42ac7982 |
| SHA1 | b617df008c0a01cead18743ed525264ea9b3217f |
| SHA256 | fc99744441fa15696d2279c63a981e25ef48108fd29902b4da60e0bb09e422da |
| SHA512 | 4be0a825d7ec2bee9561d5c4ee42c318947e422a3a52b93863b6243f3a77a800347d8f45ec67f62fa1bfca271bea29ae0b3f260583d2dc47e9d98089e0b893c7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d79e0a2891fc014a_0
| MD5 | 0e1569cbd3c2a73e38a322a73c39130c |
| SHA1 | d8ae4de020ddae96f786a9fc5e9d6d52a139005a |
| SHA256 | 3a04293662b59da6d9a7122d52da2a911e5f3d6afa39cb99adc829cac6a986da |
| SHA512 | 27b13e0f5a44603b3679e3c5763652c8099c8a19c62521868512bf41ea4f72efcd24d69c61cf96d65d2fc6c72009a206ac3849cd48a466aaed18512488a9dd5b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2f4680e8f8f8a14f_0
| MD5 | 753f955b0fb5057f355a6ea78ebe45e7 |
| SHA1 | 3268166f109d258b574f3cbe2024b36c5af84589 |
| SHA256 | 826038bf05e579186712a0b2bf37c2b9bfe9ebae30d5c9be41842453ebeba502 |
| SHA512 | 35b4c2f02816b69772131b6c86dc43d52c1e1fdcdf239f2956764269c5c326d9db7d78a785eea563ef1494307791b3cbac4b89b8c2720756fd1db2109d13219a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\96bc766215a93e35_0
| MD5 | e8205efb8c2847344d18aa4b3fb266a9 |
| SHA1 | 0fdd217473d65d9ebca672704ab16df5fc24d882 |
| SHA256 | 47418b0618ea4d5936ced190b8ce7711b795bcd8ff486e5169a350cced323c98 |
| SHA512 | ab500801858fe06524f181731261a5c10f5dcd3e7571ca5769f352d4715b34902b5e2c0d8d41ff66f3ef6761f288cd4f31621e1e729ba3ce0cab9fb91997a0ef |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\86b9cbd77d05d034_0
| MD5 | bc71bc689e9c4049ede0527da858b1bc |
| SHA1 | 1b8ef5ee3c37affedb5559e673474cb19805a41d |
| SHA256 | 5175feffab816bb29a549948fce423c3f5b04cbba8af3de511223b4e89aa7de2 |
| SHA512 | 9767160722a80c9c2ce5c0aa04e7721f463a7178faea21fe57d23dbdf47866539b3fcef2c1a80013483ca54cb38446c1e692b622e4ab6418a2b28086c78cf508 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\635e64b37935c888_0
| MD5 | 971278deef7474409f2d009148c15aa2 |
| SHA1 | f1da4c632662012c7f883ece6ca5a2a091320cf9 |
| SHA256 | 5df0a9284cdb26b10a12858efce36b33d2bccf33847c6e6b20f0660bb002ce95 |
| SHA512 | 693ae8dd0ce63912803d1ab4aa25c62e081db862deeb03e27f07872417b9388bcd4cd3f7820d4f2b38838cb4c3850b178a2a9d1bf999481f5e9ad70f67e1db6c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9f608f61e011c420_0
| MD5 | 3b15b68d87e0d35cd412724df259a44d |
| SHA1 | 9d5f7daf23b25cff4e3dc457adbffb17ea3c7fa7 |
| SHA256 | 16466206b4cf768e3712e5443bf30e13cfdcbed91a38cf6151a5b00089b76c07 |
| SHA512 | e4157d1f39e6bd5c255ad1aa4d80c36bb2d68557bd2b3d30dacff7fd23682414ed869eeca4123c0cc00b86ad7774fba72122965b58cfb6cddcc8966392d649bb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\242d87fe25e8b258_0
| MD5 | 6d179f925397456fe4d81086594be5a8 |
| SHA1 | ecc2eb560e59f61097824d2954e7f60f6710e0f4 |
| SHA256 | d87ef5f19ea18ee3a44c7ab8b415adbd0e6f021f919450f555cc528da157402b |
| SHA512 | 99ddf55492a1b3c9e746b6661ae95b9d3dbcb07f3542a1e1829aa2f507355780522b9a44fee8a0e3308a1f48c604afd8218cc178cf8dc904eab3f74afaa5b969 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3fd2be14abb3904c_0
| MD5 | 378cc1a5d67e9332845e299330caea79 |
| SHA1 | 582212bd45816af75bc38b3adb683196e2a44eaa |
| SHA256 | ba05aec57487525e16215d0c1b0c96c0763f64ca2b580ab07c991be45dc905dc |
| SHA512 | f06f3a739242fe136518c816fa521735888f72eeb5e38d42ba91175afccaf4058e4f8ee4a828e2b261359cd4cc2510041e26ef137d6859d95d6538ccc8df14fa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ab38c7b2c8042af4_0
| MD5 | 6e29c8b13399fff53fb290c2c8026c48 |
| SHA1 | 4d60886f062f2070eae497d32119eccdf797a819 |
| SHA256 | dfe639bcc333862542a27696571820661aa20ce1eac4ed725f31c059b497453e |
| SHA512 | c106d455a1e21b10be99ce82ed988986b5c059a754712b6daa4b43bf020d5d4d20e16344580ad98509551d9f8d0ef4966fbe128a7189dec8b0e59112083e70b2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6aa9a2943612cce1_0
| MD5 | 7b4addc697f05e8fa7b110b4880692bd |
| SHA1 | d0a14e1125b2e21e8b12470e653fc851ea4b2f62 |
| SHA256 | 71e4c53d1d32e8f5b54477e46b55db01ebdc47d3eddc5f437238b7ae87333bad |
| SHA512 | 9b2cd96674150b17a128eaeeb10d9769288b0570ed894dc35aa6e37e9531f43f10fce2f145ca0f7f7e6ed717f696473f73c491fc6dd9f4602eced8e758bce6e5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\78bc646c0524ce58_0
| MD5 | 3e686f8e8b3dcf60e32ff44e961c97e4 |
| SHA1 | f2875a2c6684eb54f73fe6c0dea272e8365f9f4b |
| SHA256 | ca3aa6c7fea0b53a3fc8825604f025ba2d58502dabfae4be1a2788d226a0ac85 |
| SHA512 | 50a56a9816e77a5f516d268063ed1c4e8818da2bda335691acd57a1390b3eb26d1c8a8cb9a3529506cbe44ed7b662830e835bc79f6b46785745ce776df93e5a6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d45aae6d8d9c9ff2_0
| MD5 | b5aec680d2b86c2e44e542f6a4d7a90c |
| SHA1 | c1750232291c73794284b849cec77791a6fe0c82 |
| SHA256 | d253e1f9a97b1f528a5db15809200292a9e99292bf5cdf2c9055c7f57fe92c7f |
| SHA512 | bae5a3cfe034ba2514467fa592909c1e78ed32462ed3fa872c4e6b1046dcbb7102234964ada702d615af3ac59679c6e266d0df9fcd59fa0c56c535d731849c4c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c211c9dc68f4bf01_0
| MD5 | f35e8813d3d746a3efc65ada62640c50 |
| SHA1 | 55480b6ceb9a2d22a43ce8b08c0f9fb8104fe311 |
| SHA256 | 8aa05030ba315f1225898a849ed1343ffcc8d2c46795f3659f0345ca29c242d9 |
| SHA512 | 28076a9ee2e9536cd1029e9011c82e855907e0041e8d6b6bd556552c16940da3bbf5bed78568f02a65313ee195b574bb917e6d9d2598cb1d60cb437a0460c9e7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\82af833e9b5cc26e_0
| MD5 | 025a1a0c08e26d3e6ee51b74eec4fa6d |
| SHA1 | 19873720a78166c29700eb5bc3f465f0aad6d560 |
| SHA256 | d67e9d050b3b1b1de8db25a58fd259ec895cd8b6fd7de8ded6d996ec25c648cc |
| SHA512 | 6a15e09c4a11d3d691b889bcb3169f89dd27506db5d6cda24d13e9492bcf7dbb533f3daea50c0376b9de22b7aeceeb50acf026e79cbe402333dfe857c6651f97 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6a5e8bb53a565b9f_0
| MD5 | ffb885df2eddc4d3505f9d90e8f54bc8 |
| SHA1 | 7d5f24be959b00638802290a5bb10bec256d172d |
| SHA256 | 5e09d1cf8478d5cb2f107f5d2d2141f7b3598c57287d92123305500eb7c004ce |
| SHA512 | e20cca0ab4dfe99955d7ebf6e02a75017c97fed6826c6e22da8590f35c05dc234adde36304331e12042e8298cdabfa073b5fae5a00e8cdf8e4c97034e2803ca2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4e9b18b0f66a7183_0
| MD5 | 8f4c870e6f5c40328be490c389893bff |
| SHA1 | 67445f793e300838dc44dd49fbfc84e8e86a3dea |
| SHA256 | 80d589ec52515ca185f99ed5c64898636b31226fc7d6dc46dcbf99da9ab44a82 |
| SHA512 | 0029f4f81427ace09d7c5ff3de0309c9cb977fa819bc79db325c2f6bc4dcee9ec7a15c56f2fee10c402fbbcd409141746252cb10c3c25b80013722200de47cb4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e97b7aecc8db64bb_0
| MD5 | 3021b1736d8b216a96cc636b6ebdfc20 |
| SHA1 | 8196d873f220e698c84b6bb9b3f125078a93badd |
| SHA256 | 5593f816fd4d4993585d140937d8c2c434a9d77cc23f63c21ed1be030ade0dac |
| SHA512 | e94a65c13e45a45a4691d61c1de9dcdbeb024af6a733fc36669af9ddf670e6b96ca3afc7b100b0fec4e0188ff143413dc056cecdf4c5d5e089406e431fc20e65 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\06cdbb7047afc473_0
| MD5 | ee8753e0463a7b9b1170c4b88c482fcd |
| SHA1 | e4bc871e01a5dc0df79752205d433c07178c83ba |
| SHA256 | 1b8a6c738ad9279f46a78495fd8d78bfd5f32eeb88ca00b0e22c267bbe07b8d3 |
| SHA512 | e203bd9452e37aa29b64b6fc049eb416350f7058e477862be8a4c73116face12067e9922f0c42b58c6ece452601291b98945a05f6859f3fba8879da8debc70cc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\15d2ba66b474cf52_0
| MD5 | c9dcfc12b0ea02ff5b14b0e0c02ca9de |
| SHA1 | a2f1ecf0114e2646412e148c42e6d8627f5d9c70 |
| SHA256 | f6ae95604ce7b4169e2c6b0ed4150fe8009d810cf11ae80b4da77849d9742c6c |
| SHA512 | 79e953e7c852c792ba720b9ddb8d29a4f2b3cb768da26b8c2ed6075c6b0b8d7d1cc49379e897b470f7bb89ee8e1b36bc3220dc4ddeefb5e2c6cd4208ec845440 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f4b95a1e43d59c66_0
| MD5 | e84b5256e28905045177864aa6469b4a |
| SHA1 | 830fec7f56113afbb9608ec618ba56e51d8e2a3c |
| SHA256 | 4a52265a9d8496648fac67642c834dfb10667d54e11aa0022ddc5a4aee5817b8 |
| SHA512 | e5d780928f25066486ade35f4f45e43f24c0fa7198198694d205dbfc7f8e3d6aacc5d8e75ea99e8e5e832c8e85a507eb8baf1ef0e01a988314075fae60b46cf3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 358e71aae01ac45e8258a7d8bf23e77e |
| SHA1 | 14d87fdba8984ef7ce4661ba05cba6ae39af8304 |
| SHA256 | 2788e5967fd7b7ec2a76c6bada6f618905a34803a0f58010305de444b327cc38 |
| SHA512 | 804d4d426bebc4c7debeb8691433940e80b7e209c8b67bd081f7f37c41cdb01de468cdeb42041a8792b12fc589cca12044f26797f52669ccf6454d0c20cba396 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 071a834f328bd1ceef16ecfe633f6a0a |
| SHA1 | f4fb14f10632eeae9a3e362236af4fda0306cc0d |
| SHA256 | b97036217edd1467cfe46257fb77431d20166c26f7cad472da19813373baf656 |
| SHA512 | 6f0a1a23d6baf7df657a968818b292fbbf7910b23263b2fbea7ee582e681a45d8cde8514a3f2938fc9bdf7293c7b41e8b75c372685e7b1b3bee5c8be58ea0932 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | ffc6faebc1e61967e55a91f963c0b51b |
| SHA1 | a1af86e842a6fd36acf1e394e998d416c7a2e8a2 |
| SHA256 | 1a019b26d37c5f7beadb5a5a4827c182b82c8d7a548404867172d90dadc1612c |
| SHA512 | 2e51f088d0b36b5400ee82dd5e14d3b6deaee52c1d1472a5e8b0596c87b60e23e9f6301b45d97e4ff04d9ba7f398886aa5dddf5ef28ea136fc37e6b4f80593cf |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 1ff5804d1021270ad2a02b60462a5191 |
| SHA1 | f60b3d679ebbdefe90a51ae9ed81fca06da89685 |
| SHA256 | f9b3f172ebd6d81b37f187d251b2e30a2dfbad247f44f5710eb7e101e6d4088d |
| SHA512 | 184476850de6775476598aad4771d619617810446c61d14a52b1f1a753e78b88bf29d1e3d630681cffd5b27e2724894e052581d4a30702e208eedb412f2ab422 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2c7d32db5359f7261a4dca810db63153 |
| SHA1 | f59bea1f83e8062f0bbb832ca68a74ca3ffaadfe |
| SHA256 | 52a25d9bcbedf71f785b876ae3a19365dcc3c0e785481dea6fb114f9399eb78b |
| SHA512 | ad39ac9cb0a8c7181b07c15a9892040a7a97fd38105fd908a0ebe07e1f0783923ce395909f1a8f48b11c5d176f46da648e7be8cdf04dd34a084e96569642c4d1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | d97f07d1b2c6a63d88ad93aa8ee73929 |
| SHA1 | 49a051d4a27d661f227f06d0afeee86a7c38e52b |
| SHA256 | 1b2290d9ff60c534b3d699e47dd2860b01fc6c13e2ee793414dd921375a032d0 |
| SHA512 | 3e7629b6e0e3f487e62dbd25fddac2fe16407122f246daa7bcaada193eaa82d94aa13fc0ce5c911ef8276720474cfc6c6a26792017e116331bb9f37f1f00113a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 1df0b38dcac58791cd7ad38b0233f43e |
| SHA1 | c3e803fcab804d23dc54e197ac7ddb186cc18678 |
| SHA256 | 05139f9c8c434397924218ade059ed11ee92d7f35f15c2ea04876591d1c62f94 |
| SHA512 | 83e5c842a1917b5852e70593f7a337475385884c74ea57d626e0bc6454303b49c815532c7b61a6938a74550f18fa419cb30c5a7d89b74e08deae36d611e0e4ec |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b002b515b59f972b6f9dea52e1f84e48 |
| SHA1 | df86047baebf192365dd405cd4bd3952f62091ba |
| SHA256 | 6f7156a91216f23e74eed8e3eac982798042e0ac9ea7907ce8cd8e67c799891b |
| SHA512 | 80cdbe3a21ff69e175705b282d638cc5f8736b8d9354da7b80d21cd56c5bcb678fefeb86baab7056711c337bc0fc072cd632528d3e6e0b0579d56155bb35a05a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 47f443248bccadda5654e3b483922a07 |
| SHA1 | 3655c99039e33620441590cfd8de53fdd65b31ca |
| SHA256 | 0a7a28fe842cfadb9811755dc98494d53575a54d2dea1d1a50f2f280f04fe05e |
| SHA512 | 3e3f2aa33bceb34c5c356b676f47a898c6643ad1910f3eb6095e18018f2985fbc798ae5be56eb4ff214a9d4348261d75abab1ac70221b607cbeacb172888cb33 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 5e887d921f65f80e1904499733b5779e |
| SHA1 | 47169d68b3c5bc6eb0dc0b694153d395148f626a |
| SHA256 | a4a5079280ea3e5f43d0177f6bb975acac175311d0eaf62f615d2daffe039d7a |
| SHA512 | 700f68d214a5343f52821ba456d44ac8783fecb451fa652dfe0556089984b20fa02b2c146c3bc31ac457d48628e7d2b394712f912a3f9e6bfd29a27eb3e209f2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 75ca706d0afe57177c6133e0297e9de7 |
| SHA1 | c96e2da9c92cfe79de8c285e08d2dde4ac824e6d |
| SHA256 | 8e4e1879f9f74df8247ef8953392bce33228f5c26af33c7e43f78ea1da7b35eb |
| SHA512 | 30595dc19f2c183e0f935532ce6fae83d48d657901efd038028a4a81dbe9f53fdf01872b3c090108f0f5466583c2d9b89080a1aed53f8fb9c83c201f982a967b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | aefd77f47fb84fae5ea194496b44c67a |
| SHA1 | dcfbb6a5b8d05662c4858664f81693bb7f803b82 |
| SHA256 | 4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611 |
| SHA512 | b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 66be11f025ef117c1edb0f84f8d0e6e2 |
| SHA1 | ac5678b95d4d913ee9e48166505a0f34e82694da |
| SHA256 | 3908f02b5c2fd3c8f9f256b332a5165747a95a7a0ebda315d3cb2070e5848cd3 |
| SHA512 | fcbb52baf8c53815317504f94f48b0dd3217a2a11b9bbe5a7126c4a470c4e56afe83822515180e2e700cddba4352581da4493e3a5aa87a5ee884cf60a2da63f1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 69f2e9da2fe10227f00257b7bbd4d73c |
| SHA1 | 5085629c94c399781411365bd406bde360c0f521 |
| SHA256 | 8d40dcd424806c4234355611c5c51a6ded4fd56395978249a49fd4ad1a246440 |
| SHA512 | 0e43f31b09bf639ecff0ed4c4f54cbf0492452608ef924b52db08e327b9f2efe78902e2faa92720d29dad30624874702aa3a4fd54aca6153ea544f25bd02cef2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2da186cbaed3ce3b40303b25416967c4 |
| SHA1 | 212f006f16ff811b367efdd15adf9d325b421d18 |
| SHA256 | 9a0b90eb7d9dcf84c1fad56425b2f5185875d29269698175d7584200bab933be |
| SHA512 | cab0bd315f36224bb54a06b229ba11926bbf63e9ddcd642480abc845b0de37cafb8885560f7098bcded3fa12c4e5bae7bb11db54167535bfa3e92adbdbb298fa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 9c45d27be9e8ffcfaf644993e4a3415a |
| SHA1 | ae9ba93a4ced3bf6a60d8b80711d3d4261bdb8a6 |
| SHA256 | abe846069edaf7b2c46eba155422c4b582e1499c6adfaf65bfc3dc68f762e734 |
| SHA512 | e0f35e75bf009d7f4806e76bc5639046e9116eb324b800df7ea60a546b95a78117aa7aa96e2d622a4a9c4447f54ce8ce542c196ba67cfad6d7ae5ac91d87090f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 9378460ce5d4f4ea4225f88b0f8a84df |
| SHA1 | 024e4c7ae02fcbfa92ee604996eae72ac84d5fbc |
| SHA256 | c3fb2309a540e9030338944d84405e83536d1292f128dcc75acd85c0ee8b55be |
| SHA512 | b37d0f8a67eea8959c691007f371834372a6ba0cb7df6086360983f713b0955495ec5c2ecad41e5782d6f0132119873eb34486354ef7729fcb239d02132fa853 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f1bf948373ed7a8f352e97b6ee466747 |
| SHA1 | 309a864a682f871b19f02e1171ce2d9664e59932 |
| SHA256 | 8f4cd22a83a7888a7e0d50bc9b28d652b6ced14cddac8ba4f77e1d61d09974b1 |
| SHA512 | 57e053ea42c10402abebf574b83cce12214fc760d5d7d7e9f70e40437bd6057f6ed9d3322460a09c760a802f2b77737d7ad5317bc4c0a3653f146c7a059bb786 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1
| MD5 | 4e00f5afbbea46f52e35bf3cb39bcb70 |
| SHA1 | 9baa4dd1764b0f5731b43060c146bab72e1023bc |
| SHA256 | ae650075deec314356a499ee6d1bd101cb4d137aaa9353a870d5b645287df1b9 |
| SHA512 | 43a8200ae8ab0a8dd33a3c52a1e80777d9d43a2d6bc977111a273b1d0cdc3fd54e5f55d97ebb64051a9dc95751da23316ce58bcb3eb9e077356af7259cbf6951 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\f3756f65-13b4-40a8-a55c-d32b24d41906.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Temp\scoped_dir4856_1056449629\5a57cd9b-a00e-4442-a916-5ef287591d2e.tmp
| MD5 | 14937b985303ecce4196154a24fc369a |
| SHA1 | ecfe89e11a8d08ce0c8745ff5735d5edad683730 |
| SHA256 | 71006a5311819fef45c659428944897184880bcdb571bf68c52b3d6ee97682ff |
| SHA512 | 1d03c75e4d2cd57eee7b0e93e2de293b41f280c415fb2446ac234fc5afd11fe2f2fcc8ab9843db0847c2ce6bd7df7213fcf249ea71896fbf6c0696e3f5aee46c |
C:\Users\Admin\AppData\Local\Temp\scoped_dir4856_1056449629\CRX_INSTALL\_locales\en\messages.json
| MD5 | 558659936250e03cc14b60ebf648aa09 |
| SHA1 | 32f1ce0361bbfdff11e2ffd53d3ae88a8b81a825 |
| SHA256 | 2445cad863be47bb1c15b57a4960b7b0d01864e63cdfde6395f3b2689dc1444b |
| SHA512 | 1632f5a3cd71887774bf3cb8a4d8b787ea6278271657b0f1d113dbe1a7fd42c4daa717cc449f157ce8972037572b882dc946a7dc2c0e549d71982dcdee89f727 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.85.1_0\dasherSettingSchema.json
| MD5 | 4ec1df2da46182103d2ffc3b92d20ca5 |
| SHA1 | fb9d1ba3710cf31a87165317c6edc110e98994ce |
| SHA256 | 6c69ce0fe6fab14f1990a320d704fee362c175c00eb6c9224aa6f41108918ca6 |
| SHA512 | 939d81e6a82b10ff73a35c931052d8d53d42d915e526665079eeb4820df4d70f1c6aebab70b59519a0014a48514833fefd687d5a3ed1b06482223a168292105d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.85.1_0\_locales\en\messages.json
| MD5 | 07ffbe5f24ca348723ff8c6c488abfb8 |
| SHA1 | 6dc2851e39b2ee38f88cf5c35a90171dbea5b690 |
| SHA256 | 6895648577286002f1dc9c3366f558484eb7020d52bbf64a296406e61d09599c |
| SHA512 | 7ed2c8db851a84f614d5daf1d5fe633bd70301fd7ff8a6723430f05f642ceb3b1ad0a40de65b224661c782ffcec69d996ebe3e5bb6b2f478181e9a07d8cd41f6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | f408052be4ff82950e9e37747d330b10 |
| SHA1 | bc94286d5dbeebea2e4da0c18938ac3adc60ff41 |
| SHA256 | fb689d3c454e4943374c990ee408a8d1c9988776d4e46783a28d0661d2314597 |
| SHA512 | 92e16e6b6ce6ecad9f94297f3f8f7fd911dd6f0ae862bf52516c88627e379d160119d445fa905746d2774897b077885715c1d59efe991c07900bccb5e26aa54e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 8d72af30db690f73f1cbc1ff85dd8c3c |
| SHA1 | 11a145025147ded5e6ec90ca8ef23bcfa9a5b203 |
| SHA256 | 29ddb5115c71046797f93fa7b471b13239e0f5ef80799b2cc52ea697a146faae |
| SHA512 | 6c26c273017ffa69139f88afd2386474d0cd151d7cc899be89cba76da3031015758f6fc936b1605715bc0a929dda3c5b4a8ed17b417e8d7d9894dcea741f2c6b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a82bb06b7a9bc017ef94e15142c9d50c |
| SHA1 | 0fb154c2a937d3cd999badf48c3b46a638dc8fc2 |
| SHA256 | 326bf62918e85458b25b6ad9af3525c84f9980f0ae23630d54fdd6c8ee0733c1 |
| SHA512 | 18c84aa525f032e6dc52ed5788ae8fe5c4ea307d633c5fdd15f49f445a6c95da55ab49ba5468abc5d947655caf77c5de5de270d882e1c45393aa443893ee0580 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8cb593114c6a0d95ddd48e04be9f55e8 |
| SHA1 | ce2ac17438d5f75576d0866c27578ed97adf57f8 |
| SHA256 | 9522b09d9e63ddf02273e916c07b0e691b7da274b693d76934b7e4764c393b7b |
| SHA512 | 0acc616a0c902873a3d96e0768bac5499b888050d584429f59cfb3073bd93b9a620c1b50164265d3ececf7f1c25904fc355f90bf4edee9ea22c66c33154da480 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e2a50a4033f8376724b1607f0f7f8578 |
| SHA1 | 7df31c45b532f24f4d0c03b55329a7c8b74f6ef5 |
| SHA256 | 1c921c893a37be0b812d0087840577e6b5d3297d57762426ea2e54d318e17e42 |
| SHA512 | 8e0bd3081e164e71f7cf6be982b1b61f55722ac924806927468be80844e23481e23b777dee81b1f5ff291c4c7f6ac6945a322b4b85d6e95cbb4a6261e87191f1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | b1154cf0fa24267c5456f614f3560363 |
| SHA1 | 8fdf23fcf56eef3286e33c1dde78915425d74c55 |
| SHA256 | 47170173a2eb63f9e323c7c98bc2e0f604879ba2a2474af2b7c1df0059a0d3bc |
| SHA512 | 25072a3697366ba08796f1f94f2fb4f323f0c02a82fcba49aafe33f2c87dce7e00f369ea44ccb317bc52fa88db6d111bae2f309ac2c6b84ddef8321145e1156e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 4629d0271059910772dd4633eea15eb4 |
| SHA1 | 93f0664ac725b8fed18f6983d8e6c91e91bad834 |
| SHA256 | 2c3989f612c38f9c7d6e359db21cdea8f5f41436c128f04ba4715ae177e2eb5f |
| SHA512 | f7914867fd276944751c8637df98fee4f9e92f7cf0260dfaca66eaf46b3d8be99222f99a291801bae67245c5b07e49697722cd67046aa568b4e5bb74e88b6ef4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 811441dfb1470a498389a727008b8b91 |
| SHA1 | d2b269c7207888908baf0f0b10e007c3bb686277 |
| SHA256 | 482791fe8669378dd416a12d59ba0cb58e8a0a510238b4b5dbd68490e55a0d0b |
| SHA512 | 6837b95d3a69a5ef0132f5340dedc13478022a57ce067522823b18d25c978912905d4422d15fb5cf2e3aa42fa8c4037f80debd0e0ae1c55a49615b6191cb015a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | e389a2348f4d2ba0068643c813622e8a |
| SHA1 | f87baca8d1414342a8edf8a0f7837f67c5f446e2 |
| SHA256 | a85a233c9acfa5a68cdf5b02f17c9e5f3f83ff449f8e8f283be8d6ed6c20b98e |
| SHA512 | 6aaecd3141b4a0b307394e4ef208d88a6971884295d1cb39cd0a4af5e69dcd609656d48529ee14ef058104ef36a637e68968763bc5df4bf53ef9cc3e2ab42c99 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 19d9ce1abe7d2346bd97dbf0ed819bee |
| SHA1 | cf7effcb5d61dffb5b5611188736fcc95a8d1df4 |
| SHA256 | 239244aa84aa5cdb08c1ab5d147afbe6fa6ccab32cf82215260c11dbd49413c1 |
| SHA512 | ea11765b8bf5549e0b74358c2a42198dd9974e15edf3ca84a0ff4d8d82e8369eaf884de036dd89f74aee6c20dc73658e000c9e4e9cd1511f974a25e48777c6f0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 90c0f9c090eefa5184bb90fd512bd2bb |
| SHA1 | 0dfcd071b3579b861f9fdf31d4b54b76f0857eee |
| SHA256 | 8516dbfb3f5bbecb239abcf354858b14dd98ece208116392620455e2eee1155e |
| SHA512 | 0eb69334b1d95614f88d44a78016c80907a1ba42eeeada46f759e8d40f3515a873f44d43824e9ac6a388395f854ac3289a7f36c54976c76c3777932f4abc4efa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 07256d2cb019309ee0a6264c44ba7ebb |
| SHA1 | 2d50adff33ca22db12da8c907107234b9f8770a0 |
| SHA256 | 3d97c54543463d5a1bb9b210e683f85bb95bb16a751f83834a1951317bbb6f31 |
| SHA512 | c9a7838da3f338e8b8bedcfb09304145f04d639d73edb24c1b6ea988f40cfb350f90ad01c83d37512ecf568534fb37e77cfaa0f266112b928a3b2d28e7e8a2b0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 4e4920288e9214b298f8239621fca6a3 |
| SHA1 | b2d154b74459459770c3a1489d2a4e50b71d6b59 |
| SHA256 | 327fc8be45b159833760b9e8b018ba584bd4cce316740c4b258e5e3a9293e182 |
| SHA512 | affd0b349b3dbc9ba0dc5112e1aeb00891d0b6e13e55335b4a2040bf3bf5000e5903329cd68acc056b53ec81839428a4b240ac85a1f6bbff7583b47e5222fb7c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_0
| MD5 | 30522cc1b0272818100c93fd7413603e |
| SHA1 | 118e0b3f510f65d3a524e0399ed2027a3e63bda2 |
| SHA256 | c34a7b229697e4d3d5783af777a358b74f9c603076bb2cd0d5b7253037e1e9e1 |
| SHA512 | c9fa5d9e60519247f2a904bb037cb45fbd7fb4a193f871b6f1469fa4764799989fa82bafd017ec40832e18466726a23a0bca456f74a51cc0a381d47f4ec4b407 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1
| MD5 | 28bb4e2d4339289164a254640539388e |
| SHA1 | d4ceeeb18f87aa17caa6ce0f731fbd55ea1c1eca |
| SHA256 | 0f74c481f1b79704adf8f2925abab7b527186d0985cf74c301d4cc8a86c39d97 |
| SHA512 | 4fe31f596afd8fd91da6b5a7ff4aaaea26d3e525df294fbd268d47787745ed9d297a3571903760f10b72f8365ab9e209bbf3db4244f98b8532fd422629a396f2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 224d2f013917d74b7ac87fdc2b82f3da |
| SHA1 | 3e4cda87852a357c5132903f337f254127a0faf2 |
| SHA256 | 8c62bd6023f22176abee1fc372478fe1a19a1ee467614dbbf2c2219c5851ad95 |
| SHA512 | 6b4ec9c8fab6c56d23a4cac9f253b170d6f08c11e70753d98dc0dbc5f398b0044e9d192f24c25254478163252e8d4ee3419aad58ca63571668e3261086d5ff34 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | de948d5503571038baeaffddda857fc8 |
| SHA1 | 22e2e0085fd5d807ce0e4f568d8d2d1009dd7d18 |
| SHA256 | 06bad0de1d19aa15417cafa429b0d5d5a1c604bf547b2bcdd8b7b99cdbd54cb6 |
| SHA512 | 9b60033af751243735556532bb95048bc26bbcf78aadb228c1d206e4a76e51173335a374acd226331df7fdde3149459dae8ad49f10c485007b77eaf2e5b2365a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 589c49f8a8e18ec6998a7a30b4958ebc |
| SHA1 | cd4e0e2a5cb1fd5099ff88daf4f48bdba566332e |
| SHA256 | 26d067dbb5e448b16f93a1bb22a2541beb7134b1b3e39903346d10b96022b6b8 |
| SHA512 | e73566a037838d1f7db7e9b728eba07db08e079de471baca7c8f863c7af7beb36221e9ff77e0a898ce86d4ef4c36f83fb3af9c35e342061b7a5442ca3b9024d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 6391efa1459bd1712b808693c50db62d |
| SHA1 | 2003b14a5ff4060aae41ec8390957a6d5a774802 |
| SHA256 | 55337087c8e05efca54b3c489880a4a85506b68b65e4034d763fd52380900eff |
| SHA512 | 002183c2f2ee49f87ded57b943da1ecbcb63594d9cdd70f79a6a8125a579e69ed19757d1764a48a38f2e5b799475a43776ead816f1d77a4d1c9b2202731cfd09 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 93de4d09cab6a72619345bcda928fdf0 |
| SHA1 | 551f20a4a5c1f31699ee212b1659fcf51f5987a0 |
| SHA256 | 8376f7692637200c4b9530870a31f5dbb54303f93377834c24850088fdf9ab56 |
| SHA512 | 3c1540a9f110399a951bede9ddf6745b8bff14f04b73b0d1b611844077ce10cdbb78edd539583ac77e37e7a1aa45e0094f993b1987e799fcc0722169aa5daa4c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e898f47cd03a61fb0f69986d17b9b6ee |
| SHA1 | 4e7e8912804531761fda5b7fc018edb5ef6515ca |
| SHA256 | 493e82996ea0f3745850c50f9a60b8786132b08029c5ee58bbb6ac615ba314a5 |
| SHA512 | 576cdd074f22bc6b8177195d0e6ea0c4fc549362a07875e927598efc97ef79c805f8ede9acbbcd2dfa5524a7e085f157ffc14929d07a38db40747a1013f75093 |