Malware Analysis Report

2025-03-14 21:48

Sample ID 250202-zg2esazlcp
Target FlashpointInstaller.exe
SHA256 3b49c90ff2571e045cb5fd985b7397b37d7bb83e58729a0b4e44b0e5543135df
Tags
google discovery motw phishing
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

3b49c90ff2571e045cb5fd985b7397b37d7bb83e58729a0b4e44b0e5543135df

Threat Level: Known bad

The file FlashpointInstaller.exe was found to be: Known bad.

Malicious Activity Summary

google discovery motw phishing

Detected google phishing page

Mark of the Web detected: This indicates that the page was originally saved or cloned.

Browser Information Discovery

Unsigned PE

Enumerates system info in registry

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of WriteProcessMemory

Suspicious behavior: EnumeratesProcesses

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2025-02-02 20:42

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-02-02 20:42

Reported

2025-02-02 20:44

Platform

win11-20241007-en

Max time kernel

130s

Max time network

135s

Command Line

"C:\Users\Admin\AppData\Local\Temp\FlashpointInstaller.exe"

Signatures

Detected google phishing page

phishing google
Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Mark of the Web detected: This indicates that the page was originally saved or cloned.

phishing motw
Description Indicator Process Target
N/A https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Browser Information Discovery

discovery

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeDebugPrivilege N/A C:\Users\Admin\AppData\Local\Temp\FlashpointInstaller.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 5560 wrote to memory of 5036 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 5036 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 1580 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2988 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2988 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5560 wrote to memory of 2292 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Users\Admin\AppData\Local\Temp\FlashpointInstaller.exe

"C:\Users\Admin\AppData\Local\Temp\FlashpointInstaller.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x104,0x108,0x10c,0x100,0x110,0x7ff920573cb8,0x7ff920573cc8,0x7ff920573cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1928 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2520 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3272 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3288 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4628 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4660 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3928 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3612 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4720 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4620 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4984 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5204 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5436 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4772 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4832 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3280 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4756 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5212 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4920 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5292 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5588 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5880 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5784 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5588 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5848 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5676 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2992 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3452 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5964 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6320 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6264 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5964 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1336 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6080 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6436 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5908 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5204 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5904 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6748 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7036 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7032 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7272 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7488 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7960 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7888 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7868 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6672 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7664 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8512 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8596 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8772 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8976 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9172 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8732 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9460 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9432 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9628 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9836 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8048 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5340 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9128 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7896 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1916,4789534387502779109,2334023256700529508,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7232 /prefetch:1

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Network

Country Destination Domain Proto
US 8.8.8.8:53 nexus-dev.unstable.life udp
US 104.21.16.1:443 nexus-dev.unstable.life tcp
US 8.8.8.8:53 181.129.81.91.in-addr.arpa udp
GB 95.101.143.185:443 www.bing.com tcp
GB 95.101.143.185:443 www.bing.com tcp
N/A 224.0.0.251:5353 udp
GB 88.221.135.43:443 th.bing.com tcp
GB 88.221.135.33:443 th.bing.com tcp
GB 88.221.135.33:443 th.bing.com tcp
GB 88.221.135.43:443 th.bing.com tcp
IE 40.126.31.131:443 login.microsoftonline.com tcp
GB 2.19.252.146:443 aefd.nelreports.net tcp
GE 217.147.225.26:80 esim.ge tcp
GE 217.147.225.26:80 esim.ge tcp
GB 142.250.178.4:443 www.google.com tcp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
GE 217.147.225.26:80 esim.ge tcp
GE 217.147.225.26:80 esim.ge tcp
GE 217.147.225.26:80 esim.ge tcp
GE 217.147.225.26:80 esim.ge tcp
GE 217.147.225.26:80 esim.ge tcp
GE 217.147.225.26:80 esim.ge tcp
GE 217.147.225.26:80 esim.ge tcp
GB 128.116.119.4:80 auth.roblox.com tcp
GB 128.116.119.4:80 auth.roblox.com tcp
GB 128.116.119.4:443 auth.roblox.com tcp
NL 18.239.83.2:443 css.rbxcdn.com tcp
NL 18.239.83.2:443 css.rbxcdn.com tcp
NL 18.239.83.2:443 css.rbxcdn.com tcp
NL 18.239.83.2:443 css.rbxcdn.com tcp
NL 18.239.83.2:443 css.rbxcdn.com tcp
NL 18.239.83.2:443 css.rbxcdn.com tcp
GB 2.18.190.78:443 static.rbxcdn.com tcp
NL 18.65.39.26:443 js.rbxcdn.com tcp
NL 18.65.39.26:443 js.rbxcdn.com tcp
NL 18.65.39.26:443 js.rbxcdn.com tcp
NL 18.65.39.26:443 js.rbxcdn.com tcp
NL 18.65.39.26:443 js.rbxcdn.com tcp
NL 18.65.39.26:443 js.rbxcdn.com tcp
NL 18.239.83.27:80 crt.rootg2.amazontrust.com tcp
NL 18.239.83.27:80 crt.rootg2.amazontrust.com tcp
US 8.8.8.8:53 78.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 26.39.65.18.in-addr.arpa udp
US 8.8.8.8:53 27.83.239.18.in-addr.arpa udp
US 8.8.8.8:53 8.39.65.18.in-addr.arpa udp
GB 128.116.119.4:443 auth.roblox.com tcp
GB 128.116.119.4:443 auth.roblox.com tcp
NL 18.239.83.2:443 css.rbxcdn.com tcp
NL 13.227.219.127:443 apis.rbxcdn.com tcp
NL 18.239.94.14:443 images.rbxcdn.com tcp
NL 18.239.94.14:443 images.rbxcdn.com tcp
NL 18.239.94.14:443 images.rbxcdn.com tcp
NL 18.239.94.14:443 images.rbxcdn.com tcp
NL 18.239.94.14:443 images.rbxcdn.com tcp
NL 18.239.94.14:443 images.rbxcdn.com tcp
US 150.171.28.10:443 c.bing.com tcp
GB 88.221.135.34:443 th.bing.com tcp
US 151.101.193.91:443 rv-assets.softonic.com tcp
US 151.101.193.91:443 rv-assets.softonic.com tcp
US 8.8.8.8:53 js-de.sentry-cdn.com udp
US 151.101.1.91:443 di-images.sftcdn.net tcp
US 151.101.1.91:443 di-images.sftcdn.net tcp
US 151.101.65.91:443 di-images.sftcdn.net tcp
US 151.101.65.91:443 di-images.sftcdn.net tcp
US 151.101.129.91:443 di-images.sftcdn.net tcp
US 151.101.130.217:443 js-de.sentry-cdn.com tcp
FI 18.165.122.125:443 sdk.privacy-center.org tcp
NL 18.239.70.135:443 c.amazon-adsystem.com tcp
GB 216.58.213.2:443 securepubads.g.doubleclick.net tcp
US 151.101.65.91:443 di-images.sftcdn.net udp
US 151.101.129.91:443 di-images.sftcdn.net udp
US 151.101.65.91:443 di-images.sftcdn.net udp
US 151.101.1.91:443 di-images.sftcdn.net udp
US 151.101.193.91:443 di-images.sftcdn.net udp
GB 216.58.213.2:443 securepubads.g.doubleclick.net tcp
NL 18.239.70.135:443 c.amazon-adsystem.com tcp
GB 142.250.178.4:443 www.google.com udp
US 150.171.27.10:443 c.bing.com tcp
US 13.107.246.64:443 www.clarity.ms tcp
US 172.67.41.60:443 btloader.com tcp
US 8.8.8.8:53 200.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 125.122.165.18.in-addr.arpa udp
US 8.8.8.8:53 133.66.101.151.in-addr.arpa udp
US 8.8.8.8:53 2.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 135.70.239.18.in-addr.arpa udp
GB 172.217.169.46:443 syndicatedsearch.goog tcp
GB 216.58.213.2:443 securepubads.g.doubleclick.net udp
GB 216.58.213.27:443 storage.googleapis.com tcp
NL 18.238.243.82:443 config.aps.amazon-adsystem.com tcp
US 34.120.62.213:443 o4508370636111872.ingest.de.sentry.io tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 104.22.52.86:443 cdn.id5-sync.com tcp
US 8.8.8.8:53 86.52.22.104.in-addr.arpa udp
US 172.67.74.232:443 cdn.btmessage.com tcp
US 130.211.23.194:443 api.btloader.com tcp
US 4.227.249.197:443 u.clarity.ms tcp
NL 139.45.197.103:443 notix.io tcp
IE 13.74.129.1:443 c.clarity.ms tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.74.232:443 cdn.btmessage.com tcp
FI 18.165.122.68:443 api.privacy-center.org tcp
GB 172.217.169.46:443 syndicatedsearch.goog udp
GB 142.250.179.225:443 51f343e50f13e9d6ce509e322d1bbcf0.safeframe.googlesyndication.com tcp
US 8.8.8.8:53 partner.googleadservices.com udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 8.8.8.8:53 ep1.adtrafficquality.google udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 104.18.26.193:443 htlb.casalemedia.com tcp
IE 34.252.178.153:443 ap.lijit.com tcp
US 34.120.63.153:443 prebid.media.net tcp
DE 162.19.138.116:443 lb.eu-1-id5-sync.com tcp
DE 162.19.138.116:443 lb.eu-1-id5-sync.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
FR 34.1.1.166:443 hb-api.omnitagjs.com tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net tcp
IE 108.128.47.81:443 id.crwdcntrl.net tcp
IE 52.30.137.178:443 ad.360yield.com tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
NL 18.239.68.229:443 aax.amazon-adsystem.com tcp
DE 148.251.234.42:443 shb.richaudience.com tcp
DE 148.251.234.42:443 shb.richaudience.com tcp
DE 148.251.234.42:443 shb.richaudience.com tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net tcp
US 104.18.29.101:443 cdn-ima.33across.com tcp
US 8.8.8.8:53 178.137.30.52.in-addr.arpa udp
US 8.8.8.8:53 116.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 229.68.239.18.in-addr.arpa udp
US 8.8.8.8:53 120.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 101.29.18.104.in-addr.arpa udp
US 8.8.8.8:53 42.234.251.148.in-addr.arpa udp
US 216.239.32.36:443 region1.analytics.google.com tcp
GB 142.250.187.227:443 www.google.co.uk tcp
GB 142.250.187.227:443 www.google.co.uk tcp
GB 142.250.180.1:443 ep2.adtrafficquality.google tcp
BE 64.233.184.156:443 stats.g.doubleclick.net tcp
US 35.244.193.51:443 lexicon.33across.com tcp
GB 142.250.180.1:443 ep2.adtrafficquality.google udp
GB 142.250.178.4:443 www.google.com udp
US 34.120.63.153:443 prebid.media.net udp
IE 52.95.125.22:443 aax-eu.amazon-adsystem.com tcp
GB 172.217.169.65:443 cdn.ampproject.org tcp
GB 172.217.169.65:443 cdn.ampproject.org tcp
GB 172.217.169.65:443 cdn.ampproject.org tcp
GB 172.217.169.65:443 cdn.ampproject.org tcp
GB 172.217.169.65:443 cdn.ampproject.org tcp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com tcp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com tcp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com tcp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com tcp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com tcp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com udp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com udp
GB 142.250.200.2:443 googleads.g.doubleclick.net udp
GB 216.58.213.2:443 securepubads.g.doubleclick.net udp
DE 148.251.20.72:443 sync.richaudience.com tcp
GB 95.100.244.20:443 contextual.media.net tcp
GB 2.18.109.44:443 ads.pubmatic.com tcp
US 104.18.24.18:443 cdn.indexww.com tcp
US 67.202.105.24:443 ssc-cms.33across.com tcp
US 3.228.193.234:443 cs-server-s2s.yellowblue.io tcp
DE 51.38.120.206:443 onetag-sys.com tcp
GB 2.18.190.173:443 player.aniview.com tcp
FR 149.202.238.100:443 ssbsync.smartadserver.com tcp
NL 185.89.211.116:443 secure.adnxs.com tcp
NL 185.89.211.116:443 secure.adnxs.com tcp
NL 185.89.211.116:443 secure.adnxs.com tcp
US 15.197.193.217:443 match.adsrvr.org tcp
NL 35.214.162.172:443 csync.loopme.me tcp
US 44.193.89.81:443 sync.srv.stackadapt.com tcp
US 204.62.12.209:443 sync-service.net tcp
NL 46.228.174.117:443 sync.1rx.io tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
NL 35.214.136.108:443 x.bidswitch.net tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net udp
NL 35.214.136.108:443 x.bidswitch.net udp
FR 34.1.1.166:443 hb-api.omnitagjs.com tcp
FR 34.1.1.166:443 hb-api.omnitagjs.com tcp
US 172.111.38.86:443 tracker.open-adsyield.com tcp
IE 54.72.73.48:443 jadserve.postrelease.com tcp
US 204.62.12.209:443 sync-service.net tcp
US 192.132.33.69:443 bttrack.com tcp
US 35.244.174.68:443 id.rlcdn.com tcp
FR 51.178.195.216:443 rtb-csync.smartadserver.com tcp
FR 51.178.195.216:443 rtb-csync.smartadserver.com tcp
US 98.82.158.241:443 s.amazon-adsystem.com tcp
GB 142.250.187.226:443 cm.g.doubleclick.net tcp
US 172.240.45.96:443 sync.aniview.com tcp
GB 142.250.187.226:443 cm.g.doubleclick.net udp
US 216.239.32.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 216.195.178.51.in-addr.arpa udp
US 8.8.8.8:53 23.149.64.172.in-addr.arpa udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 241.158.82.98.in-addr.arpa udp
US 8.8.8.8:53 96.45.240.172.in-addr.arpa udp
GB 104.103.201.8:443 secure-assets.rubiconproject.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
GB 95.100.245.251:443 eus.rubiconproject.com tcp
NL 69.173.156.149:443 token.rubiconproject.com tcp
US 151.101.130.217:443 js-de.sentry-cdn.com tcp
US 4.227.249.197:443 u.clarity.ms tcp
US 34.120.62.213:443 o4508370636111872.ingest.de.sentry.io udp
IE 31.13.73.22:443 connect.facebook.net tcp
GB 142.250.187.227:443 www.google.co.uk udp
US 130.211.23.194:443 api.btloader.com udp
GB 142.250.200.1:443 d280726d9c353892e15e3ab0cf4f3583.safeframe.googlesyndication.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
DE 162.19.138.116:443 lb.eu-1-id5-sync.com tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net udp
NL 139.45.197.103:443 notix.io tcp

Files

memory/4956-0-0x00007FF912A73000-0x00007FF912A75000-memory.dmp

memory/4956-1-0x0000024740700000-0x00000247408E6000-memory.dmp

memory/4956-2-0x00007FF912A70000-0x00007FF913532000-memory.dmp

memory/4956-3-0x00007FF912A70000-0x00007FF913532000-memory.dmp

memory/4956-5-0x00007FF912A70000-0x00007FF913532000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 02a4b762e84a74f9ee8a7d8ddd34fedb
SHA1 4a870e3bd7fd56235062789d780610f95e3b8785
SHA256 366e497233268d7cdf699242e4b2c7ecc1999d0a84e12744f5af2b638e9d86da
SHA512 19028c45f2e05a0cb32865a2554513c1536bf9da63512ff4e964c94a3e171f373493c7787d2d2a6df8012648bbefab63a9de924f119c50c39c727cf81bdc659f

\??\pipe\LOCAL\crashpad_5560_YHBTWHOPJOZICPPH

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 826c7cac03e3ae47bfe2a7e50281605e
SHA1 100fbea3e078edec43db48c3312fbbf83f11fca0
SHA256 239b1d7cc6f76e1d1832b0587664f114f38a21539cb8548e25626ed5053ea2ab
SHA512 a82f3c817a6460fd8907a4ac6ab37c2129fb5466707edcfb565c255680d7f7212a5669fe2a42976150f16e4e549ea8310078f22ed35514ee1b7b45b46d8cc96e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 ade730e5d1ae20c06ebbf6a5739f551d
SHA1 967ef7808b59adb79b544dfd9bc38c23009db9c8
SHA256 b6af8e99d74b83c852cdb9940d99d227de085ff0db15a1d62bad119c06f812e6
SHA512 b967f39a419470badc1895c1168655f5e6c853b5629f889ad17a6d5eff6ae3e2c4048efe12e9bdc00d6aea409b7097102810da50f5c1a5880fe2a7c5447b6240

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 9faef9d222defe651c0f4d21cdae58bb
SHA1 93c53136be1fee9e27fe1e36553fb04e625c356c
SHA256 edde92ade45b0394afb55ffd357d4cd3f176f49ce6858dda7e19c04470e589eb
SHA512 e710fab2cc59b325c1c9e5313efc12fac91f7d8a0a76505dfe9174dd45401568a7a17128e41b1eb132ed2d7a415864ef3a865940efb7f3cfcffdc74a082526e8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\8e6f3dd7-0386-427b-935f-143522b07cc2.tmp

MD5 3cac808e1939c0e2e35953b0413a1ede
SHA1 eb05684301024b55093842ebbca482c459e91cff
SHA256 42aa1a35270fcaa0b0e9ed0dee2e8bc67113dd9464e9ca94f9f593b39cf6ab67
SHA512 10f3c5f286316e7329cbcf37d33c65e80ce5531fd42a35926cdf8db59b4f02c169db6b4604d9daaee4b0cdbadfe1876502adeb09ae5366292069e2cb8212ed20

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6752a1d65b201c13b62ea44016eb221f
SHA1 58ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA256 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA512 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 4c47b7f621e324ea57f322ccf10a9744
SHA1 1e95f0effc9d7a59afe8e9e367bc620164d6435d
SHA256 4e8d3a81ead7cd12a679b2b64b3bd473877260a087e8c6261c6f4d7c30404c43
SHA512 11ace551b7bd7a7843c6cc4888ec12816c6fcfc28d5b8f736f9a0851c7b4f615d25dcfdaca327ee5bcf3bbc22dd6d8a03f66e3a1f3b6059d0c4a2d38e73748fa

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 11df428a6d8bc9eafebfabcf90a5a18e
SHA1 0a5beeb877fff9a346581a6c1c2cf49c0c681911
SHA256 b31ffa2a3c10ffc25eaa9874bca70964f5bec75899a0c0259cfcba3d07a05456
SHA512 f35086ff133688765071bace92d581ef0fdaaeeb0fb8dbee8d1f85c2a5974324a29e2915d3750391c4ab58e7ce0ae32668848bf5f7925e92b737e8ddc28269e5

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 b7d9bb9376a02ea5f1de88557412703f
SHA1 be0868d9b6f33689492287d5fcd7b14b3bdfb401
SHA256 fae9cdbfacc20918840c37159bc14fae0334c08088c6e2e0a534f8ef56d2d8d1
SHA512 e3e8680d2069de9c6527c0e3de448eda9b5a412dc45e349edbf3b5213216860f040d1cb663c64be7f6133419c22662c2102bba9894d5c564742de993832e4819

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 9b51baa93a582365925fe6207742b1d4
SHA1 2be725fceafe832c7545c0ed78d9b5892719bb0d
SHA256 0cfdb9c9b05159b8b9d5a560599bf0337a2555cf79eea3f8120897e377cc55ad
SHA512 33696b4715d37c388f74a7816d67d1ad5d1530f1a4af689246d4c447dcdac98cd7e28f759a9d2c89e1fb5010cc912e7ebc366152e7b4d06213820bcd0d7eb095

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c0417fc36b9504120a2dfb28405b3a99
SHA1 f9992d03767218d8c45ee1cb37a3993a6ddbe8e3
SHA256 821bd22750fcde1b97574e1b2e2aeddc646e950568cf4070b426a499f0f11358
SHA512 56e5cc47784ef832ceb48e4a99bf04fcd1fa1934a98e2934bb262b7b64f1cf820629b6112e537fbea8a796bebf9e2d655b9717c9ae162f0574408217d94af641

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 4140b7b593c649602a4d521e4a7c9243
SHA1 65383f1f8991e1ba078c3e67c13ef46513bc5c73
SHA256 392e633c46a633455ccf92433d5b1e2ec89d7e20630656227b2656ef2322ea56
SHA512 af9e4d5a33e75a129ac20a286ed3efeb801121852dfcffe4dcf4b68c0471f5b92a8afaa0f57d355859ea7774c55444924ce6919041467c9e018dff26300c7ac3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5856d5.TMP

MD5 c6b89e5e1e233ac74869d245b2aee9c2
SHA1 57b14958f44c7536a10301a5c24e1005845339a5
SHA256 75f32c7a07c4679b1bb607dcc1ad7d5f8b8fb75e5349b5dc0caffc93cb1f4571
SHA512 28b8c3c963af40f93680f424c9fe362065c0704889e2a1a71b0ad0659fffd86e6bfcbd3cd3d566eaeddadf9a8d408e5ef61fd03bb40aa9fb59b7d49c54400387

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 2701b7efb02e5babd72653f00d8ed409
SHA1 0c9ad21f583e280b3e51faa03ff186ec04b68d43
SHA256 4a9cc1e3dc76788879fd4c47761045b6d392e9856f7d9b69e091a4020589bdd4
SHA512 b0bc4ff841b5e9bd47850646ecdc1cc9d34d69435dc67cdf3238183d62caa860cd854b333f3e79712f8bb3eacb631a9aafcb6240fb753533afbad65d04966a69

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 b444a820ef0a8c94f65476378878976d
SHA1 09c419c7f60b6c0503ab974c4cd670ae99d423ee
SHA256 61cc3b77a6cdd2dc8494edc0dbeadee710e69988e98c33bd76607be6746ee350
SHA512 37047573e61255ac3b219c26f559b57117a2d546c3c411018a062d16238cf4e68c0e2c78afaf7813f0bbf6773cf98330b74177f23b3b46e88897cc3afcd8bfe9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e2c303cff9e5dba8c3fcf3740179bba3
SHA1 faa0ddd75e5726c7a2fc40fa40bb887a7baaa27d
SHA256 a820bcc9e0197d7c392ab3d6bc99f7299a65fe6f3969d64c244033288cff5bb1
SHA512 66a1557d1ed867795e7d6f77c69ab8de09e57d1e517eb15b812ee1db5dfaa0c46b7f1c08fb35f455bd86c158192a8719a430186f9288011de043d5a088614a53

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

MD5 69df804d05f8b29a88278b7d582dd279
SHA1 d9560905612cf656d5dd0e741172fb4cd9c60688
SHA256 b885987a52236f56ce7a5ca18b18533e64f62ab64eb14050ede93c93b5bd5608
SHA512 0ef49eeeeb463da832f7d5b11f6418baa65963de62c00e71d847183e0035be03e63c097103d30329582fe806d246e3c0e3ecab8b2498799abbb21d8b7febdc0e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

MD5 d6b36c7d4b06f140f860ddc91a4c659c
SHA1 ccf16571637b8d3e4c9423688c5bd06167bfb9e9
SHA256 34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92
SHA512 2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b816af31a13aea40b719c1bd9cdaaa12
SHA1 af0388906056be678f21358057f7a3f72ba4631b
SHA256 0bcfbbf42389fc430a5c31ddb05a3393a99bd2f743ae06edc7c920bab9683fdf
SHA512 25fb328b7363460591064ddcff6375b3c24f2f76773ff18f89bfa63bdb59d7c7184fd3bbab73f56648578e423fb8b26d150610f53e2500d46ed3b824b1522f4e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 818e0a434855f154a63898867bdde3f6
SHA1 5c04d7e2808252f2c46cad8aa0f3f5ad8f53ff7a
SHA256 8c8520d57ef75bdd3cbbcfd7772378764f005df57c15cf2b83461a71ff84dbbf
SHA512 0bc90d7a55f7062c4ecc8b24000f0385054ae0b543dec51f64cf294d2e2adad57cc6c9e2429838c02a0b0baec8225462db97b7f8fdc3bccc21c55454d551e744

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 3fb53577ac26da154fccbf3afa47cfae
SHA1 8346f43098124a8a36574635eaaf25595958d093
SHA256 6f2ec8f159b10b318940dee0085dd845bff0982612b75ec50ac43ac5cc42494f
SHA512 9e34c4b47a7e3cadb3df6d4d7a4b1081a200d1e27ab2cb0c8a51d75c7fcabe3b4334f428ff06477f54577b49c691c3d1e7f6ac91f1a39e1a15cac46b12ec1e3f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 7d2d43e9cace6a86c74313f77d6f9bba
SHA1 a291f6f99b4508f9e9db5dc95d207078777b53a1
SHA256 202cff93c7529ffe7a74c33597054243c0ccd4777f554aa7e4c2d3e92aa3f616
SHA512 f3328b423075671490178f061cee8586d9b819e3285f3f79a33ce4e5ffcd5475c0d25134831bafb98156700d9736748c79dc020dc375732be2d8c2787564c67b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

MD5 df1d27ed34798e62c1b48fb4d5aa4904
SHA1 2e1052b9d649a404cbf8152c47b85c6bc5edc0c9
SHA256 c344508bd16c376f827cf568ef936ad2517174d72bf7154f8b781a621250cc86
SHA512 411311be9bfdf7a890adc15fe89e6f363bc083a186bb9bcb02be13afb60df7ebb545d484c597b5eecdbfb2f86cd246c21678209aa61be3631f983c60e5d5ca94

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

MD5 e580283a2015072bac6b880355fe117e
SHA1 0c0f3ca89e1a9da80cd5f536130ce5da3ad64bfe
SHA256 be8b1b612f207b673b1b031a7c67f8e2421d57a305bebf11d94f1c6e47d569ee
SHA512 65903ba8657d145cc3bbe37f5688b803ee03dd8ff8da23b587f64acaa793eaea52fcb6e8c0ec5032e0e3a2faacc917406ada179706182ce757d1c02979986dd6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 44cbb797e6249b7b49e2af9002c76e39
SHA1 1deef2fba3c8abda817d62669ee6b6028aff231c
SHA256 123c8337eadc5fa2d65d0a1fdb6aae502e84de6f99b232c42cec0760843afef8
SHA512 70c8b6006043e564b2dc82b8c1a15976246820f0d47769b37b24ab98b69b4557320d97e22b159ec6a223558d83e0be949ddedd731bafc443696edd65b147da93

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 1f66191ee1ef7c328de75282b461885f
SHA1 06ffd97da6ecee7abc12a4f3e29a13f055db0463
SHA256 3e95f591be089b7966aab5a3b37d249a738333f4469bf68e871fe55198b4549a
SHA512 4a1d5afaa84448d492d60d0044038f9f3d4f65ca6ef1a7f1f48e2f0b2cdfc4215463dd84ab373ee1dd7e12b109934de52ca26ad18519d57b6412efa393490265

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 81bc37a6bada58652bf1f2029e1044c5
SHA1 8f87b82c6f3ca3fb97196322f4bd2cb62f48a8c7
SHA256 9b3b309966de7122e9584f58985ad3230eedb6b2ba3524ac54e4dafbc9a5419b
SHA512 156103bebbae792a75ab14a64e000f7d67253f5424f300a0a1dc2c8dfa3463290cb6b91470b65c55e3c0981205e96990fc4f7acfd09a275a611d0e47aa4d5ebf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000049

MD5 ba958dfa97ba4abe328dce19c50cd19c
SHA1 122405a9536dd824adcc446c3f0f3a971c94f1b1
SHA256 3124365e9e20791892ee21f47763d3df116763da0270796ca42fd63ecc23c607
SHA512 aad22e93babe3255a7e78d9a9e24c1cda167d449e5383bb740125445e7c7ddd8df53a0e53705f4262a49a307dc54ceb40c66bab61bec206fbe59918110af70bf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 30fec66877476e012847a81a7126c684
SHA1 829e87985c85d71a3b28ba4c32c8e807db1ead85
SHA256 2b6662aafcb2d8573133f2c60bf6223006221b3c9e1cc87c3082c0792684c938
SHA512 5b6d38fa23ce4daf242cf9d99b20d4f1602a3e75e638533b2f855639cc26cce2a6c651577f63e7a21cdb7c1f5d5f983a1e2c30dcd64fb6124fc27c4bee41019c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 38c55e4e50fb5eea26cb19c01d00b5f2
SHA1 be7064e3232ba35f1f60ba5da3adb2e0add772b4
SHA256 c93f5ea8045002692aee92a3371de71d4c28fe73349d0b6151e4b49a66d2ffb3
SHA512 33d6af9be6dd0ce5bccdee68fc67da4e7edd8615dad3370e21196f8518b33eef298aeedd7acdb0f959606a557a8ecc9e75ceb239c4f0bfdfcf2a73da4c0b71e1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5965c5.TMP

MD5 c26c637d6ddf96bc3aa5479b91569c33
SHA1 bd926334ee9bfc6261e742bcf1856d755b4509c0
SHA256 b146a639b0bf881e4358bf2cd2fbf5bf16bcc7a1e7127067a39e30ff6e625a7b
SHA512 5b1c0016a3919e3da3abf9833526cc681107c7d6f75e42fb6fed570de4eac7af4da1f0bc654aaeb2a53be7f6e2a1680a53cbdc3d03707ca0d828b445bc76fb9d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 f0baa3b60e3723885b9e8e9782301c69
SHA1 daf5e57d3895d64a4a31c9754578dd20d62b93e2
SHA256 c21774fad4ef189f9d31ec56201f5632e88d9e2273ccb2ef7b4c15bdab658636
SHA512 a57d1706b83142cc717ff27c28f97be81ba4fc013af8e5266b385cc0c5d3a157c469cd7ca5da514300537eb4eef666315474c6fb3cdb2cb77dafcd78e6ae83e8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\926fb1e119ffcde0_0

MD5 014c0f8ebd0552093d645ae89aca5218
SHA1 c7725512a60021c67b265015b713c9bfcfd7e9ca
SHA256 963956077422e52a3fce94db8d8428f5c7ddac085792c5f3defb1e58598ec2c0
SHA512 b1d5d50c30611481055413218e38a89d6573fc5c3f391b1c99272df3b6eeb918e17656d0f8d2e3a89ee9d34c9421e27c04137a963df089530c4916a993f914b5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\03e4cb8818539177_0

MD5 9de2ee76b93c28c59057053183814ce2
SHA1 4144c417fe130fef81648438c6019f559479e6d2
SHA256 e019de487fbdd60772fb744b6c835cef97371f526d2c510a27ef2c6207caa3bc
SHA512 3d8851d5c789933d4483af613fae66334b76f126d87a46aef41f10c859583e60d51f62a5893a8a832da04a380dde7c016a12bfb05bea331880a66b39811b33a0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9444e4fdebd641ff_0

MD5 d5f375b0d56b7ca6c815c96bb3ff4345
SHA1 46e450fcefaba7943570704c7f760b3435a79a42
SHA256 a2529cef20a4a3278f1cd8b1b12b6132b0ee1974e896d53c2bbd267fba0e2392
SHA512 18cc6f67cf8ffe97df91a177b89fb69397be464e6e96c57d58a756c60d5756a944a5050f6364bd3cbbd886ab182cb4f29b33c04ebaf9423942e01571e5a56242

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\39bfde44a08ff743_0

MD5 47657a29aacfa1c5601cabd598667fd6
SHA1 5d9e1de997379b9b698afca6081912f8afac189b
SHA256 2f0a6e4feef999a3f0c3a8e8523e28e6cf33ab98e7332e529f0d0a948ca09e09
SHA512 86e74a2d59ed0d721d4e6d2dfe6280f3d16b1efccb6beaaed14053cb53caf76868f2bc7cf9c765a6c4fe6c6cfb58c2cbc382e5632c84d1ecc22263c6907d6106

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8b628304eaa7b5ee_0

MD5 42faa7876339e9a45f041602d876b7d9
SHA1 ac1d275c19edf7ce03b708d328a97a55556efadf
SHA256 1b428da35036488ced2fac0c3b92a2a4d60e87488223dda5b3c9e1bdf2f190a2
SHA512 5aac9a82f600654646bac0bd33c2c9b3d26d6b6e36873cb6ca558f055532a200bc65b1a0fa72d6a40a16c69944ea1fe7a2df1a01e0d5b6f7813065f97fd34466

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\dfe50a82672c9c8d_0

MD5 b25eb3a97506139890780382f3a25ebd
SHA1 8cbc27b377be4fb928b1b54f304681e063732f45
SHA256 fbe178909b801477584082877638333b2c29c2e746b223c6ff2c827a1ca87825
SHA512 fc1c54582eac04e0262122a37fb4e342cfd79c221e8353579783b57a0a77f7bb642ccee05a622db9a1a21901f1ed637b39bcc8654ec9dbb5b292c7a7d48c0d95

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8c26164d1b260a90_0

MD5 c804b94228f3175164941efadefcefc1
SHA1 0ea46c75cf247bbbeaee60f3c8aee12b5017714a
SHA256 78a62e8c80d9c97edbc13a22c7546264dbdb6d146951b981f07d7adc0b8c358f
SHA512 41ebb80b1f6fe25377feb90f350b4f95bccbfebc2ce0534b9d6505b8ceaf8cb3b547de9cacd7a8d7d919b2a6730b49c5facb0684d5fa2439cc3c629629dc99d4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004d

MD5 7ec99dd3121c453e659a23bc6f9106a7
SHA1 6dd16d4536c4f6e9812b54562b6d15c7712e6ffa
SHA256 448655a01aa921a8a61691e7a60104e5d84b689dbc81d007434c148795494fd3
SHA512 27f14e300cf57b701e8c3f68eb8d5f2c8b210114dd04a9e27939f85de2ed30ea2faa27080a8b9a0ff176ed313fa1dbfc60e2dc59ab5aa9d918a6d616d778a587

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004e

MD5 fb28fb9793c5990e1d0f2108ffae55e7
SHA1 e1b3602712eaaab090dd13ab501dcd3f57925f6b
SHA256 80a7df77558be02621568e0faad2094f4fea5689728577aa47fb7422295b860b
SHA512 96e667f132b565eed7838a5f83366d394af46e5afdb91c0528d55e4cdfdf1e0613c23102a8d0e1a548ef60d5fb28346ebdbd8e3dc59672eeccbb4f027018490d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 41410a5e85f038f14eab925e0eab552e
SHA1 314a56f716537aca65fdc61187177016ca8611d2
SHA256 ceb97a0fbd9d96e666a4962f1f082caae0b17eb65767e901c6528cf8466b24fa
SHA512 51a6a0b3e205820c643c922e0e8480a63eacf931dec09ef5412886ef7d16afecd549c476488785860b10b497c7a0b6afc2529e78f32d2a5aac7f68c942e48a09

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 626dc3dbd3bd18ea85663966b5fc53c6
SHA1 ca379f8e31c5a6405fc3bda15ec8b6743c791100
SHA256 d086d0adabe699fac6d2caa65abb9f9f3b76253cfec3f3447dbfe2f8dc4930c8
SHA512 7c9ae60e3830edc24ec19068faee801a738097cce4a96c2506a5b3bf4f5df59d13db3935257911b952a39451bf6fe696ed4ca1d95731e0c426d1b329e0a41e86

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\693d1052-8d8f-4f61-a550-f0b6af7e62e7.tmp

MD5 0399526f3ca86991d4509f6fd2e158b3
SHA1 b97a83bf327beae6989795325dd9c90ba568b647
SHA256 e11de8a53c39ca78209c8887564675738c9d42a44afebf95ec5032a4bbedec81
SHA512 e450b0da67350bf5c78bf862419269f436a500b296709a737283fa025050d9ad577e2bb16065e3a14921b7f5823e917a9c1b7bec4b5ff2b598ce3d03e21b5411

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 1c8990cc33474604e247fb0eb1ef196d
SHA1 5033750c7794b19730b04ce8eafb267f48d83903
SHA256 9942c0cb789f66f2d6ac631c3341b168de6389acbc22f2104d3d1aed67f9deec
SHA512 9422cb59f6dc8157f759c9b98945c598603b7e7678aff9f1ac585b0d3d03a7817671c47fbdd6a602934607bdbc9fe0b5021fb6b1d69aad3c1ae2a35b053d5231

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 e3bc6fba9a944e61d56e39d4e71b9a4a
SHA1 cf931491bb362178e66902d974562fc24cc87da0
SHA256 89ba4068a6092bd85ae0a338d7f7cab13d85f99ee00e22ef6c43abd8917c470e
SHA512 64c4560c075135d31a6a9c15e67b2bd0c3c08ba8969380a8e6b00f9af5ed15c0470b6a8f86fa2545a2c5827d0f7dd08220a258ca2615c10cd9917e94f4be953a