Malware Analysis Report

2025-03-14 21:46

Sample ID 250203-vfq57sxjex
Target http://youtube
Tags
google microsoft discovery phishing
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

Threat Level: Known bad

The file http://youtube was found to be: Known bad.

Malicious Activity Summary

google microsoft discovery phishing

Detected google phishing page

Detected potential entity reuse from brand MICROSOFT.

Drops file in Windows directory

Browser Information Discovery

Enumerates system info in registry

Modifies data under HKEY_USERS

Suspicious use of SendNotifyMessage

Suspicious use of WriteProcessMemory

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2025-02-03 16:56

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-02-03 16:56

Reported

2025-02-03 17:11

Platform

win11-20241007-en

Max time kernel

900s

Max time network

897s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument http://youtube

Signatures

Detected google phishing page

phishing google
Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Detected potential entity reuse from brand MICROSOFT.

phishing microsoft
Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133830756806191199" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 400 wrote to memory of 2524 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 2524 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 4548 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 3868 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 3868 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 400 wrote to memory of 464 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument http://youtube

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffc27423cb8,0x7ffc27423cc8,0x7ffc27423cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1848 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2368 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2648 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3148 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3188 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4560 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4824 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4944 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4480 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4492 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5524 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3500 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3172 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4552 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5360 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5880 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5204 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4900 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6008 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1188 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4944 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4936 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4900 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5348 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5368 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6488 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6560 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004DC 0x00000000000004C8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2924 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6264 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5820 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6316 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5368 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1968 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6916 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4724 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6440 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6808 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=5436 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1856,1563058288043589316,5049793247734501532,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2004 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffc2696cc40,0x7ffc2696cc4c,0x7ffc2696cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1828,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1824 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1944,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2128 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2208,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2184 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3120,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3164 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3168,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3296 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4512,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4348 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4796,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4804 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4984,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4804 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5088,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4892 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5104,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4616 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4612,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5052 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4516,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4440 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5448,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5424 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=4900,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5320 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=868,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3892 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4844,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5160 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4528,i,8875678653367720314,16408086517136723895,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4352 /prefetch:8

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 13.153.16.2.in-addr.arpa udp
US 8.8.8.8:53 2.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 google.com udp
US 8.8.8.8:53 google.com udp
GB 88.221.134.2:443 www.bing.com tcp
GB 88.221.134.2:443 www.bing.com tcp
US 8.8.8.8:53 r.bing.com udp
GB 95.101.143.185:443 www.bing.com tcp
GB 95.101.143.185:443 www.bing.com tcp
GB 95.101.143.185:443 www.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
GB 95.101.143.185:443 www.bing.com tcp
GB 88.221.135.16:443 r.bing.com tcp
IE 20.190.159.4:443 login.microsoftonline.com tcp
US 8.8.8.8:53 4.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
GB 95.101.143.185:443 www.bing.com tcp
US 13.107.21.237:443 rewards.bing.com tcp
GB 2.18.108.71:443 assets-www.xbox.com tcp
GB 2.18.108.71:443 assets-www.xbox.com tcp
US 8.8.8.8:53 cdnjs.cloudflare.com udp
US 8.8.8.8:53 www.microsoft.com udp
GB 2.18.108.71:443 assets-www.xbox.com tcp
GB 2.18.108.71:443 assets-www.xbox.com tcp
GB 2.18.108.71:443 assets-www.xbox.com tcp
GB 2.18.108.71:443 assets-www.xbox.com tcp
GB 2.18.108.71:443 assets-www.xbox.com tcp
GB 2.18.108.71:443 assets-www.xbox.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
GB 95.100.245.144:443 www.microsoft.com tcp
AU 40.79.173.41:443 browser.events.data.microsoft.com tcp
AU 40.79.173.41:443 browser.events.data.microsoft.com tcp
AU 40.79.173.41:443 browser.events.data.microsoft.com tcp
AU 40.79.173.41:443 browser.events.data.microsoft.com tcp
AU 40.79.173.41:443 browser.events.data.microsoft.com tcp
GB 184.28.198.9:443 logincdn.msftauth.net tcp
US 52.167.30.171:443 fpt2.microsoft.com tcp
US 13.107.42.22:443 signup.live.com tcp
US 13.107.42.22:443 signup.live.com tcp
GB 184.28.198.9:443 logincdn.msftauth.net tcp
GB 184.28.198.9:443 logincdn.msftauth.net tcp
GB 184.28.198.9:443 logincdn.msftauth.net tcp
GB 88.221.135.50:443 th.bing.com tcp
DE 142.250.185.197:80 mail.google.com tcp
DE 142.250.185.197:80 mail.google.com tcp
DE 142.250.185.197:443 mail.google.com tcp
US 142.251.173.84:443 accounts.google.com tcp
US 142.251.173.84:443 accounts.google.com udp
US 8.8.8.8:53 195.185.250.142.in-addr.arpa udp
DE 142.250.185.142:443 play.google.com tcp
DE 142.250.185.142:443 play.google.com tcp
DE 142.250.185.228:443 www.google.com tcp
DE 142.250.185.142:443 play.google.com udp
DE 142.250.185.142:443 play.google.com udp
US 142.251.173.84:443 accounts.google.com udp
DE 142.250.185.142:443 play.google.com udp
DE 142.250.186.163:443 ssl.gstatic.com tcp
GB 2.19.252.146:443 aefd.nelreports.net udp
DE 142.250.185.228:443 www.google.com tcp
DE 142.250.185.228:443 www.google.com udp
US 142.250.181.238:443 clients2.google.com tcp
US 8.8.8.8:53 238.181.250.142.in-addr.arpa udp
DE 142.250.186.97:443 clients2.googleusercontent.com tcp
US 8.8.8.8:53 97.186.250.142.in-addr.arpa udp
DE 142.250.186.138:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 195.98.74.40.in-addr.arpa udp
US 192.178.128.94:443 beacons.gcp.gvt2.com tcp
DE 142.250.186.46:443 chrome.google.com tcp
US 8.8.8.8:53 46.186.250.142.in-addr.arpa udp
DE 142.250.185.227:443 beacons.gcp.gvt2.com udp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 9314124f4f0ad9f845a0d7906fd8dfd8
SHA1 0d4f67fb1a11453551514f230941bdd7ef95693c
SHA256 cbd58fa358e4b1851c3da2d279023c29eba66fb4d438c6e87e7ce5169ffb910e
SHA512 87b9060ca4942974bd8f95b8998df7b2702a3f4aba88c53b2e3423a532a75407070368f813a5bbc0251864b4eae47e015274a839999514386d23c8a526d05d85

\??\pipe\LOCAL\crashpad_400_SWQEFFGMBKZXENMV

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 e1544690d41d950f9c1358068301cfb5
SHA1 ae3ff81363fcbe33c419e49cabef61fb6837bffa
SHA256 53d69c9cc3c8aaf2c8b58ea6a2aa47c49c9ec11167dd9414cd9f4192f9978724
SHA512 1e4f1fe2877f4f947d33490e65898752488e48de34d61e197e4448127d6b1926888de80b62349d5a88b96140eed0a5b952ef4dd7ca318689f76e12630c9029da

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 7f6cbbeedaa35f086f147ebf7dab4d55
SHA1 4498799c4cd50d14f7c1ca3cbd2f9ea1fd7a3c61
SHA256 df9a10ef545d9fe5ea257b638b32657d81067a6400f52f683e5c8ee4f263b39c
SHA512 3dec6445dcbd6de603a7a8121ad42848eeb605c54ce134285b175ee7fe95d18bb5097642ceaecd8a0140eb4347a08755550aad9e968193f444853c354c4b97d6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 206702161f94c5cd39fadd03f4014d98
SHA1 bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA256 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA512 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 fbc9bd3f82a41f1ece1e86227cba961c
SHA1 2b8f71b1881083d3d664bcad6e2f6a39c59a9253
SHA256 033be819df07e698f09644716c775e2718ffe12dcf9474f9e116fbf0f2e133d6
SHA512 08b9543de92fbf034452f81a73d20f4dc7c25c2f056ca86ef3427e76b858a87ad58001b385e503caa1834688448988bce71e8dd8d0b06ae2c17d48e4df320340

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 cdaa172f54b0390bedece57e2214af31
SHA1 2b5b3de25dcad967ed05ee77f778e126a810809d
SHA256 df3cd64080c878aef6822df5f972ab22b3ae803b93ccaa51b206763d263f11a7
SHA512 8c90bb1b0c17cfe39b76e3e855ab42c25c79408c7d96d56a7e339161c161dbde84b828b9469613b2a7da09047dba0aa15e2a46cc6fcaba08d15e1205990bbe8f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 5c389d6612aec6fbc93863a62c07c35a
SHA1 aeedafb7319c28cd76ffd202fa358440eb56647d
SHA256 f735bb05af23b6eef762df53053224729848db9c4cc06775fc0a2ab1eb666fe3
SHA512 f68c947c10cffc4edc314d07f987fe6c7159de5ec373481c5534e994ac59c4a6fbe4abcbb7ad10b47c38e628d64dd5c1f09314f721056947a53fd7582b03b56b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 06c9eff0aa75cb185d1fe0dbf1c883fd
SHA1 d7f0eb83dbcb3542bfd337686ccfcda2478f2ae7
SHA256 0e64ed895a3bcc4fd958646576bb8b26d032bdc570359c6bf40611ff462d1267
SHA512 d7e60f82bde480328282ab3d287f2230c79531a4ddc3ab61040cc8baaf797ba7bbd58be8d2909730eb0d2d287eff60f7e8c47de9cbbc0d7abbd8b9b280a70118

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 50e4b6a3acc10a9cbf19f39264e86545
SHA1 8cd05a164922adfdcfe73fe3a2d1efbaecd133f5
SHA256 2e7b1ddb9ff83b422e3756bf8aa59ce281943c1ea554a1087ea50b40c7115fc2
SHA512 277d7dca4f85c7321607126411e2229ce80f1b658a908d37e3e3d9fb1ea160b77b22e91d230e2a2257918ceee71ebf47fcfd0620c7548f5404691006db309d57

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

MD5 69df804d05f8b29a88278b7d582dd279
SHA1 d9560905612cf656d5dd0e741172fb4cd9c60688
SHA256 b885987a52236f56ce7a5ca18b18533e64f62ab64eb14050ede93c93b5bd5608
SHA512 0ef49eeeeb463da832f7d5b11f6418baa65963de62c00e71d847183e0035be03e63c097103d30329582fe806d246e3c0e3ecab8b2498799abbb21d8b7febdc0e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

MD5 2e86a72f4e82614cd4842950d2e0a716
SHA1 d7b4ee0c9af735d098bff474632fc2c0113e0b9c
SHA256 c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f
SHA512 7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

MD5 d6b36c7d4b06f140f860ddc91a4c659c
SHA1 ccf16571637b8d3e4c9423688c5bd06167bfb9e9
SHA256 34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92
SHA512 2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

MD5 56d57bc655526551f217536f19195495
SHA1 28b430886d1220855a805d78dc5d6414aeee6995
SHA256 f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4
SHA512 7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 239335c3bfe4c3788c79064636356256
SHA1 f04165c8ebc68489d9fa96911cb1ee89cb27fdf8
SHA256 8dc3272ee9b368b8d2abd36f1f83cfc0bf72149248b2419960fec1b829cdbf39
SHA512 7a4f8dbe434439573b14ad01531d2622c3b138e73f19d443bfbff59e3422b822568aeb46370e420794185eee5b84cc3ebe49b4e0f31b1f19b8dc432d80fd7855

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe589ecb.TMP

MD5 57e5f5e04482bc4d0ea6030df4fdf7b6
SHA1 67784eee365ff8f8beb9d9c493693ed243a33623
SHA256 20de90bebba1426bdc988ae39a9b5905369bc9e662dc906b752d1f144fe0a2e1
SHA512 eaa095521ad47e5d551ca1dcc9d5cbfbaa82b2282a67e161502e79b2fc816df05b4c9297ea04aba6a71b4666424950ea898111d19a7586382c4b8507771fc34f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 9cc4c491285510d7fb8e59b55828d86a
SHA1 846128214b1b90c0afdbb297882f5173852f3c58
SHA256 938f3a87f807fc8c1a0fe0f725d7e13753144f531ce7af92a7f20411409bf0bf
SHA512 1fe52593f0abaaba442115f15b4a889a72cb5ada6d380fe1f5f92b8749472bfaf1e14301f5c7779ed3f184f5a91e031ce77fda65a4e317e4c6779b4e9ecce14e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002c

MD5 3a5fa9321209c671d5b8225796972949
SHA1 807f95b69f43fb71d346e4530f5594930f17816f
SHA256 528f068f9e2548c79f402f5f9e52b1cbdc114dcc7573a83ad4a2507cb5d6037d
SHA512 ff87f1bdab1e1c47f1fa1360556704d5dcf728c4d614cb1028b604b752d5a13c5897e6432d153371de224a7f7f293fe51bc0e8dc56bf90e26db2c96d7ceead05

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 f7d91e92185d1e3df1fe20f04d50ffbd
SHA1 cb4e525a96116660cd0c27ad003d676bcab22ebd
SHA256 305314a4162fda5ea1bea7705b46614cf17a6b7b6a90360c5e14de3692b76732
SHA512 ab30b73b2f07818245f24fabf9c079c9d1c4b73237f9fa247ede5e047aa4ac38bd4e1664a5ac0bd7e63c183a892c1ac2d1ced1a5d05a6b843d2a59462f5000f4

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 27fb7735247ea5087cf7a0f5256f49c7
SHA1 ffcd08f168790f1b69c59e5ba27a1145d6e4882f
SHA256 078744ff88c0fd69c9879f94699a10eaf1ed6a0cb5b26af719426b8d5d2f53d1
SHA512 a9c1d9db0da16ccf2b8a6ca8c385cf88af0ecd937bb1c7a9627ea5ded6b122ca536193a918613d120ce2d3cd85349109886a30ec6a49c4175862505dbd7d5be3

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 f176d3219a6c820a735c060454734bf7
SHA1 3fa7fe77c4504905ca4bbe77a20539f84f776e4f
SHA256 ac5ba6a417768bd8c235bcfc95f904797ff65a3122b74e63816c0d1ada08ac5b
SHA512 44da820d46f9f4a4c887ddb19ae12ad1b087d959a97d41c78a16e37d8bab09654fdec7af1ad25c45205dc41eb87d71a5fa09f8eea25a51a5ff0a94f94387ca9d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 2e90f74a553e835f41d003b17b6102fb
SHA1 69fdee8a8ead63e2d67a24b321f8e3585f290f0d
SHA256 7689330376314e0df6c6b3959f343e6d42ba3965b9820a2304cd3d5ed16eed4d
SHA512 e854f591763908e831464d8eb687f4acc1305e29eb63c9ff4d8b448431c1ec66f284179b842c81c402ba19357ab338213194cb21c76ea5faf7abb6252a02f42f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 60b3ec57e53462662c53bddd4f683d33
SHA1 6758261bd5a590bb799719cfe6e3ed230e625078
SHA256 5c78c60af09f3a155f21135e96b048853cc213e2cf6558b9cb26d52f6a8713b5
SHA512 a51764dc3bda5ac7654dfdb15e45a2de88b18b42c2c95ee9b9fb990d82938ae114aca63e4455713e01167fda9946338d15d02cb1d51c84ca9334f989f2d69089

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 7c9bb339d8463bef3eb1cf8a2fb7d5fc
SHA1 afaf6bbe3b14ac18b3afbe3448e2de59b2a7c78e
SHA256 2fd74f5459101bf9bb736608b72e03171eb0feabe4c01fad483d5329170da32d
SHA512 5faa3d9c55826f0f1186d8ab34eb68d70db4bea5caa497f0cba424afc3a1677cca340c70cca8d2fea5a2cb5f148ca2db6530173241eaa63d61988ced5ffaf9e8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe59283f.TMP

MD5 66f756967b01ccf50f26914f44342889
SHA1 ccdb87818e225fc63e90a8dd540ec478a0a27bfe
SHA256 d447fd0f808bc217e301a7660dd2c3737e80a6edced8851f21e052f4c1f36b04
SHA512 3fbc388c34577d25e7ba215b0bfab6b267184421b2c54543851ce6018e4ecd86d88cf731986450e9c04891d98eaebaa53593510f2cedb1ba50898a024c880f26

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 da3bf0924d86ae0a43365d7a0b4bc755
SHA1 9fd0a33696661087879a970e0a43f4517f91b8d3
SHA256 499e8b9ad519e01a8cc5581140cf470a3d3e87fdc4ea3bed151488e485fbee96
SHA512 f8783fea297c351ec558f817e67579d4ef47266c5cad4510ef537efda06934dcf09919e80bd4170d3c375f05591c7c04949890955a1b6e090404481d3f22cf72

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 c6359cb96787a5675cf6d4b4625549f6
SHA1 d737154ac2e03d0619593151824435287b199e86
SHA256 663e3a47d9b81305949e2fea9798d0ca0cd0d3fec20e666edab51100360a81c1
SHA512 137643d7145bb995de18dc686ba7087d11fb2583d14d84c5e8584e5bbc94a0a523298723c264dedbd2544bf551d3aa22288d8ed88402368d278aef0a4c6aa318

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 48348014e0d23f10667ce9c3f4ff7a1e
SHA1 80c3c563caadac8478562484ae6eb9837eaa8223
SHA256 a48e3f05c911c8ddcb95144f05018ff2922ac6d67a653301c0facf9ced135145
SHA512 24ed40d620d4294e1dff333853542d78ac30969a1dc1a95f8dddb2524b3092cd299d33e04eb09a25bc3c8d9e2f37af37b655f91624220b991f78eb55c762858c

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 91a4dbd132e99386465591341d7157d9
SHA1 bab140b57ead36df2690fc305f39a7f91270f6f0
SHA256 6b47f4adcc27e9476040c56ddae3ea542f535759550c62b51ea610de50c13648
SHA512 a41fc0e7ad3ff4b8e49c4a0333c20ec29d2dfa1c56eaef7a9d0c45002854fbc8761e380120e7e02c59bee7e3c23c1da9bea83069bc424cecfdfe7ba66743d0db

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 a9490a7f8ae4aa8c981b22cd55aecbc9
SHA1 e462f02510e6b8107b5857ffe5b8b04a915d140d
SHA256 038f72af33138b768bddff91ec50b8d0555185682550691ade69b5d239f0fe58
SHA512 72919caa238c54c20f591922bf24ab3c3347e379b8f99c224f0d02af857f0763c98e5efad86e0fd44890e17229ad0e37a5b31f45538c64ec4f241179163011e5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

MD5 8d29c092f3b694c3df643769af9b4266
SHA1 d130b3b41e6ad86562691a758c370cf8cf51cadb
SHA256 16ac3ca7f2c67facc78e0d6b55057693694df8be3b138eae1af9e3ad931530d1
SHA512 e2cc2a452ffc45d464c7c44380670af0c464cb828d42c38357f7977c0f19b408a2c9c19bbaa1e893af3d26d8b1957d2b8f80793207e3916a7b288e761dc32a0e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

MD5 df1d27ed34798e62c1b48fb4d5aa4904
SHA1 2e1052b9d649a404cbf8152c47b85c6bc5edc0c9
SHA256 c344508bd16c376f827cf568ef936ad2517174d72bf7154f8b781a621250cc86
SHA512 411311be9bfdf7a890adc15fe89e6f363bc083a186bb9bcb02be13afb60df7ebb545d484c597b5eecdbfb2f86cd246c21678209aa61be3631f983c60e5d5ca94

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

MD5 e580283a2015072bac6b880355fe117e
SHA1 0c0f3ca89e1a9da80cd5f536130ce5da3ad64bfe
SHA256 be8b1b612f207b673b1b031a7c67f8e2421d57a305bebf11d94f1c6e47d569ee
SHA512 65903ba8657d145cc3bbe37f5688b803ee03dd8ff8da23b587f64acaa793eaea52fcb6e8c0ec5032e0e3a2faacc917406ada179706182ce757d1c02979986dd6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c52176e814c5c22dd5a705ce2f1cf64b
SHA1 11a6ad14e807c2110ced2ecae9c8051261b037a1
SHA256 7b131b5b32cea9713a3fcc06cbc65fee7e26c54baa5e63df47791d89c287dbc4
SHA512 0b5e2ad4a4fe8b872c6f8bbc7b3929fa671d8c7394318508adb49ae04715f06be660fa845bf8e6cebff586fd5a257bc0e3a7e4d6d0f8044b9a9b75e3330d7cde

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

MD5 3051c1e179d84292d3f84a1a0a112c80
SHA1 c11a63236373abfe574f2935a0e7024688b71ccb
SHA256 992cbdc768319cbd64c1ec740134deccbb990d29d7dccd5ecd5c49672fa98ea3
SHA512 df64e0f8c59b50bcffb523b6eab8fabf5f0c5c3d1abbfc6aa4831b4f6ce008320c66121dcedd124533867a9d5de83c424c5e9390bf0a95c8e641af6de74dabff

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

MD5 68f0a51fa86985999964ee43de12cdd5
SHA1 bbfc7666be00c560b7394fa0b82b864237a99d8c
SHA256 f230c691e1525fac0191e2f4a1db36046306eb7d19808b7bf8227b7ed75e5a0f
SHA512 3049b9bd4160bfa702f2e2b6c1714c960d2c422e3481d3b6dd7006e65aa5075eed1dc9b8a2337e0501e9a7780a38718d298b2415cf30ec9e115a9360df5fa2a7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 945b9dcf48f0ba3ff7c459e5f771170c
SHA1 f697a518d8b0c1e5b78b2d9d987c60ccfef58a23
SHA256 fa6b38d1e909a4e5fe22a780af57c1b13170d8b925121bc91e47e0453167c7fe
SHA512 d6469e86bb8317c2897689e05b6a482cdb3134f99cb7317ec9c01156f09c2e549db3c77716dbbe41f6ef21025f1d21c0852da864f5b2ec7bfb2e736934289859

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 f001f4587e0e8cb33767e2e81677cafb
SHA1 8b232173c263efe7d62ea8a4d11924f887ccd525
SHA256 899d22820b62b2157bfc97a6b508717c5a3625dc05987ebf04fd70857aefb914
SHA512 de712118535d83d24f4e93b185bda7bb8eb2d4258d336fd3f4266767fc4d03fdf1556a6a0ef18c402a847d0a2768f2afe85df1fde92680eb31ecc55247835de4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 0920b81c9e93efe4d0f0459760d46c7d
SHA1 7fee02e3d32c85e9e735a378ae364f0503015825
SHA256 6e9ff135deafaf7dc3a158f1db0c47f843069f1a83154a22b1fa716781e7bb53
SHA512 3eb4f2b0e2e96c5476a377af02367e7b7eb6014a473a246dbc82c1f6cb276f5de118fc641129f93e73c6e8acb7b9712551c78b1024de1ef2dbeee84890a9bed3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 9fcf1ddaf8e4dadc5c0293f569f81af2
SHA1 a8b6c478cbdbb8915c958a921b7c90fe597b3322
SHA256 19e0314849a436f471d11b4b66de2a6745a6e01ea24b6147eb21654c468ffe09
SHA512 d2e8c48268959d3f4f7d9be054cee5db63aaa46cea45553299f2a315f98d04a0cace8aefb25f23ee69198d7f9a905ec06ceddf8c24b2d2729da98a0a6e017fdb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 aee23d334a447c1dfe88bc4cc8f6789c
SHA1 0a06361455d79a27bfa831f48f4226de159340be
SHA256 2f6dc7c6f7166c1532bae39aa7827c783a4d6b3b268e624e169f07eb285ad860
SHA512 ed528f57a4ba863c909f8664d909a1ff2d71db8837d46601a92bea1a58a14017892953af1f3a4e58a9c84155591e8f2832560a699f03f105bd72eaa040cc4ad6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 1035d30f02816b3018fe01c1757740a7
SHA1 2391b063a1f14177fb4c1e5e1887273596678522
SHA256 f43210382db8d7baed65593e2d31d66eafa93fdb0b7e56a9e6565a1cc5594758
SHA512 8376c9c8f675210602ebb95df7885e0e1ad7d275a510cb65fd56fff507a1c3da86e6dc7f931536f342ed5287f1728f939fa403a646afe4d0cc74a39d329b8ad1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 79c22dfbba405e099d7775f342ba6dc4
SHA1 46f907e3ebf672e636b9b06ff1376d2d05684d64
SHA256 0ea5388cf08284381cb4e8761bbd3f8a55bb5aadc7c5375e430ef4cd7ffc7ef9
SHA512 8db4a8f1c410be8c7061c42e3a2734ac3b609542840b11cd0203e199943564cd0960edeb683ae5f618e210f1f027931038b1e491a922e974ed053ff237f1354e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c445e60c799ea5f0bd7bc61e5db3542c
SHA1 e402287720ce4e43c98830ae5b74d57788626225
SHA256 acc76348a7bf7a58aeed623abc687257781fb892362eea4e0b53983d60dc4784
SHA512 f98da771501018136b472bde07a2c80b707a8ca1ff72a21db2440abb6b49562086e00ac57872736c720671fcc1a97705bcdea6749925ffcb980f3edf30725c32

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 e7ddac15fc1b2f810511745b32da96aa
SHA1 ef248bb043ea1589426bd3a825c087c9b1281da8
SHA256 24d7cbc2cd7a2c7da241bf54846b1a4622caae512f4566e67e6aec51499231dd
SHA512 df2734465293e554b42df2f28e7b78919afdf9cb4fbf468f4fb1aa49bd0f6af5485483c4afc25c3336a86fc196b9d347dbeaf06498ff5c5ad66991e333e92f07

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 6da78fcc15221103ebc7bdaeec85cdfc
SHA1 0ed81b0afce54321a317a8d990c29cbe4245b434
SHA256 2050685b7228505cb9e44941a4b6108ac68649f7a511303397a176d2c937b211
SHA512 ba8497ae12b743211ecb8e591e173a3bd9dc2a2db6e2cd0e63e7202075f52ebe82c7f54d549c4222dc585dda128f8c52558f702d5be47cc3bef569760c654d9e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 4bf78c1a370d60925d3141f7cf5bc2fb
SHA1 29b7cae2523e044035abc206d4fe3d741ccb9151
SHA256 0716a4743ba161e8b1d2a2978fb1f458bf60ba51705e9df869eb34c1146bdf66
SHA512 07fa61b1923c4e9ae371f00b288d9bbe79852055dbd3f3c28cde64c6966a238720c001330a8fce769f95be9cb6dd15876a0923b729a80bcfb53e9c05d482b260

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 e638ccae281a48ce8a4aa28a8747a5cb
SHA1 cd8031c20b484427269143be19e7fdd5a127d318
SHA256 23a9b7d591fc5ddc0e0cfb77539d02741be0c560b81f74f374ff2ba3112358a6
SHA512 1db0e70236ac25825b3be1b9301725453c42f97f8705dc12479c7842978f88d062f5cf9757b6bc38a80a55fd32bf1808a745eb5b5e0c40133aa0457c102dc58a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5df7106ec387e9317fa653a07916c076
SHA1 1bd00f546e5c0616acd5140389e69cc563d2fdba
SHA256 78088ad16ceca801b8f1910e893356338854f13bfd6dfce437d5500dd73124cd
SHA512 6f5e02045921bd90b17fe447b802838fff2befe94db3879e833d99e415da6d3f49550a5305ca86b757359e6d6e13d6d887374314a085a39cb50af0ad23c2be72

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 67206805108cf257ff2093e272901c7d
SHA1 f126120281d97db7084a0104c1ec88910dd3fb9a
SHA256 11313c53f0a71256ed9ac536f65bf54d12a0bc82ebcdfd04f7d9945a0459c394
SHA512 4480dcf67039a6607c6bd3d236ef26671c97c67d043f6a57073b29e3a9d9f54c5817691a0ebabebb8f4ff11907e4408d8a698135d68f13ca9741ea085f8a26e0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 529d3b69592d0d7903b070e37a326aec
SHA1 a40c1c1761e79455eb55b1750a8e4680c7917e0f
SHA256 e70cfa45502c09471a97315b2c35cf48f56ec2b4bfc1f1c16d356a6e9d66bc36
SHA512 11ac6cb28bb2e8434c0b09130779654039dd9484eb6530f90625078e1c2e9cda0d7ed7847820a21af5c0f390a3942deec0cc769b74217e9583434d3b5721ecba

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 ee2c7b3e2da4e329f9f307facbeb0fe8
SHA1 b4973349b7bba48fb7cb547b8f5a13fd1f910fda
SHA256 469b29249207c88459b104a638b599c554db8024a4548dab73330bd1d0e9036b
SHA512 061a32934ed529fd232b14da0f7979aa0c1431567b73b4f01c462b30959b162b1eb8a9a278af0b3fac2450caa9c37606fc052994213019c0f6a53550d80f5ab3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Temp\76cf1bc8-a666-43ed-aed0-7d8042438119.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Temp\scoped_dir2460_1531909757\85d1b9cc-4a13-422b-94f6-9763903786e6.tmp

MD5 240cd355e89ec1f3566bb2ef1f361dad
SHA1 2ade60eb20f0fb16657a4fb024d207a931dc927f
SHA256 1f0388d23a4d8492e2f9839392b22a6957deae8750b60ff860ee939811594295
SHA512 961fe2017949d185761d8491ab4f7f2ec3b0562cfb6fef202c34d685a87f2ea032f53d653e4c1d492dff1fb43d738e7727985738c1a956a1a18aae77a3d7f3b6

C:\Users\Admin\AppData\Local\Temp\scoped_dir2460_1531909757\CRX_INSTALL\_locales\en_CA\messages.json

MD5 558659936250e03cc14b60ebf648aa09
SHA1 32f1ce0361bbfdff11e2ffd53d3ae88a8b81a825
SHA256 2445cad863be47bb1c15b57a4960b7b0d01864e63cdfde6395f3b2689dc1444b
SHA512 1632f5a3cd71887774bf3cb8a4d8b787ea6278271657b0f1d113dbe1a7fd42c4daa717cc449f157ce8972037572b882dc946a7dc2c0e549d71982dcdee89f727

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.86.1_0\dasherSettingSchema.json

MD5 4ec1df2da46182103d2ffc3b92d20ca5
SHA1 fb9d1ba3710cf31a87165317c6edc110e98994ce
SHA256 6c69ce0fe6fab14f1990a320d704fee362c175c00eb6c9224aa6f41108918ca6
SHA512 939d81e6a82b10ff73a35c931052d8d53d42d915e526665079eeb4820df4d70f1c6aebab70b59519a0014a48514833fefd687d5a3ed1b06482223a168292105d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.86.1_0\_locales\en_CA\messages.json

MD5 07ffbe5f24ca348723ff8c6c488abfb8
SHA1 6dc2851e39b2ee38f88cf5c35a90171dbea5b690
SHA256 6895648577286002f1dc9c3366f558484eb7020d52bbf64a296406e61d09599c
SHA512 7ed2c8db851a84f614d5daf1d5fe633bd70301fd7ff8a6723430f05f642ceb3b1ad0a40de65b224661c782ffcec69d996ebe3e5bb6b2f478181e9a07d8cd41f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 785595d37afa7882e7ad7e019958139a
SHA1 98d6655030cdea63fea6a0d0f525a50dd28a8995
SHA256 3e0c6a465c055f34d82ca28e03182d1d78926095e5be28d3a9a4d5a0cb5cd9f3
SHA512 b76b7a29d8c4359d4ab7e9d3729da6c1970333bad5ed29ccb914726b0669a9dc1001a9128c598e6c829ca7db0a03972832c65d90ac4bded67296be9251908088

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 423c653e889e332ef140d819e9a08a50
SHA1 eb9df60b39858e7a1f14668930d538139bd33f74
SHA256 218e21c85e0e1d7e42ec3694f9f31fa2be1cee2a6be4bd3bc3a77e8cce36ab19
SHA512 483fb7adbef4bc8f44469d8a9c22d08f9232921609df8d4c2e3e15ca0eab966f644b18ee87b3b12cc4210b16d4c6c6f79d31d08da9e2932af0f1eb9a5366dfaf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b71f2304076ea4c8116f6ce4a7d7732b
SHA1 b2ab14dec63cf94ab7f8e4f235844ba237b5be01
SHA256 36262cbfd53b632ca751bc0867468072330ca24b73e782fb8c3f7d1a58683f5e
SHA512 121fbf03e2d81eacb76b2fe2da1cc950b5d47717b145b1568f21ab7f6deb4b5c5f6001833e29affc628e926eaf20d27c1118f63140ec94b18cf87130f9158553

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 78bab62d2871b95870db654ac92f2d58
SHA1 eef5c500651de73c91c1d935395c07e0bd3886db
SHA256 a1603f619628e033b4a446a4d8715d73134ab9ed23bbcf3f683d4c4f6aa6ac51
SHA512 9cf8e9b1866ed5adf9ddd44745edec0afd51f966ee65c271adf58401bfbd571bf7deb5ff3b781645add78f093ed5b196017d5e8a08e46fde0115a67868fb4a9f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 4cde8b72bac466597ef9f8b963a8f2b7
SHA1 63e0560300d395c4cc4b2420dbf6f1fc5349ea49
SHA256 0726c757f055abe4529a432400fccf7d68ab39fdffd515bd5e0e5d6ba73ce36f
SHA512 70a31fcaf6b9252d283453cb74b8f64ce1fcd220bac77f8fd2aa43b2b48311e8e7206cda6f9cfda9089dc5517f58cad4259ce88264a581143a40bc6449a1c83c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

MD5 ba958dfa97ba4abe328dce19c50cd19c
SHA1 122405a9536dd824adcc446c3f0f3a971c94f1b1
SHA256 3124365e9e20791892ee21f47763d3df116763da0270796ca42fd63ecc23c607
SHA512 aad22e93babe3255a7e78d9a9e24c1cda167d449e5383bb740125445e7c7ddd8df53a0e53705f4262a49a307dc54ceb40c66bab61bec206fbe59918110af70bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 66944f3fd14f354b9a8a652b2fef4b38
SHA1 dbb1d25b90be6df392c4728872a7791a93724cc4
SHA256 6e9d6cb42a2ca7cc446f9e183e8ed9df95f4231d205a79454d358242489f4ba7
SHA512 63a3c7d3b1200f30eab5c5d614f8230cb6df0be5d96c4a3c3d63b26fe44cf0a32b20458277e50803fc3c52d620dd3896578744b6163f733e9b00c5593c6ec5fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 cfea783a917cee721a3d18e070dbf965
SHA1 b773145089bfa7b2cab0202521aed0ee08c92434
SHA256 c39505c773c052cb7fe0861f2d506427261342ae4924054644a424ba2f55d05f
SHA512 84224de5022dd7a65d2518007cdcf1c2bc9e8f8a6028ae0ad54a8c4da3ce58044065bf07654eac973191184afa4278448f6139a31d78aa8edfe9e428a88f5aa9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 9c55cb001d02c3173448d81def355e26
SHA1 c82485f57558886d6aa87d53dd7b133e4f588080
SHA256 2fdb02d672af4a8c2733ca76b85fb0fc00d08fce40ff9edfd74cdd8d69c67b13
SHA512 cd563281cf6407ea73a951a63cdd50bc6009e8868bf44a4e64f773ba13cce0369179db34393278495d575620e5a715aacff852b58a0050f649aebb41b306627d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c61c32c1dcf90812bd049a8a6a0636e1
SHA1 714f753f4cedb1a39c0be8e090ea8e731d8efcc4
SHA256 6296631b12856af020d003490a6187a1e8daad3d0dfaeaf7d99d6ce0438c6e0d
SHA512 876dd53fa529ddb9029c1d0ee5e414f2a8e6e063189a7a7571876365fb8b1b3868dcdfe19de4ab7639707589c921ee1e30e4fddfda285d820c9960297e1591f7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2b6861752d6d6ead4473abfdb19377fb
SHA1 6e119035e94fdbee5ac7dd78ad5e9106e7dc29d9
SHA256 7d6987486a0fc4f1628506d26dcdde8b50641fc0a676405070e3a1a8a1856bcb
SHA512 05e4b00f7b79111de456a62612667522f32fe7fe03d675e402b365e4e3c0bc9490fe43aa4023480aaf88c3e7ec07a552bcd542a94fb0477c6b9ae0d609da3faf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f0baafd9e00aa8cd2fcf73a143f3ec88
SHA1 0969766c249367ac7f4a8cdd3511a1d69f11298b
SHA256 847c58b6d27949fe468405bad5e5079ac8fdd586f9cf7ea7b5ea4ba0a4f89c84
SHA512 a5d34ae4b7de89da803c7e756733fb00aae006e844ba453a04109125101ad27a1057dad0131dedd6e223ac388d3c419fcd1f7cadb7d12b7891161fe73e1d1498

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8e06b4927ce97826ac098376d9cb2480
SHA1 eb356f50b3d85bd6e4016bf0ac2cbfcb7d991e7c
SHA256 904fc6d0bfb02bd82c23068c7d86776cde981d1f91e3bcb8ff5aca30fad5dc01
SHA512 6fd68c683a8c43b10dee4815bcdfdc4412a831abb32c98723e5a8c3e321f1568ecd2c4e09ef6081b54aa359a524fecbd5d0f6f7465c0f6f5962c2d42cf5348fc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3a138130cb54dc1cdf3f835f6301e30d
SHA1 597145747b95d0da229b430aa5a089bbaf62b438
SHA256 354f6bd604746502accd6591c2333dccccad933c576dbc9693da46ed36023a22
SHA512 8488674a3d43f141dd6b496a3acc87e4dbfc80ce49f29819c3cfe83afb9db78e26272d75d8f3c4eeeef548b6b19c54346cce557d1bfc5085aa1ecb6e05ab1709

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 dd500f5b8a7be4755a6d0147aaade01f
SHA1 f0f91d66367f2ba6f7da57ad69098197326c53f1
SHA256 e47434d22a5568ba18d7e734f6f4b196c75229d446c93a83125c2b0c83f6883d
SHA512 d6ede73789e72f95da8854a40cea57d1db6d5dd256805a02bb2281b38ad5f0fac92900afe19278c8ac34d3bac76e64883ca4f7f7f0c873abe190a611cfb54091

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 73b4315d176ea97d000fd972c67e71d6
SHA1 b20ccacae714e6c8543c076161b3f26733b8357a
SHA256 968360bc455e330cfdc9827fa79a0bac29ed671578a33f7fc4ad9bb9736c0c29
SHA512 7c6de05aef24c0279b9f55e2aa3d1e16a86e80bedf12abf82bcb1ab9bf2d358f61de30ccb338399d11fc49e14cdf80c26e20323c8cad62d458fa3017283eaed5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 76d863619463741069b04893786565af
SHA1 13248b5366cffc53ef2e8f707ff9851c65ee80de
SHA256 791715a6b80caef6e0d2247563a7e31527564f81e4114fce3c12bd488240e6c2
SHA512 b3c1817661790650d4d7b0e0c05aef2bbd356146e0a0cd3dbf8472d64beff6ef1b4fb476cbf9e201560fac15f28da7202e7380c5c2db5c5b149a94bdad95de06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 1eaf1bcb8f58cdba1d8b3d8a86a48bb3
SHA1 4901efdcb618d21ebad3c29aa9ee8d15148d3982
SHA256 00ff95c474fac8528933f2d3e95b1c66e229fea5265b2bdf59c2e5b61b9f9040
SHA512 c4b4aab938941970e4cf8ca8bfd7ce69a0e136e9266f5c528877473ff6802ab7492bacc936b790305726947ec841afa3ec979ef083dbf3fe3a8b0a47505e2ab9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fe0beeaafd57465d15334d867cd33116
SHA1 ec2fa85ce240d3bfe678a5a505c1665ca02a70d7
SHA256 397e2da8cd9207bd3891ba80796ae83ffd3b2175987f50c35174d404176dc613
SHA512 deeb892cb9d6a02dfb16c68d9e9a6561597f647d59e80396870b7ba3489f1e305fd1eb8d6626951ac136ad9205aeb011c0ab25934bae3cadbcedfd6e1666a78c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0941bebb659ae79915360a0805e08802
SHA1 b8d14432c665aca1544dcbd93222d997f1cc5e4c
SHA256 6a49a5366b81a977587f999fc9cb8f039579f6e4a2169fea6376bf48006e7237
SHA512 b41a100d848648bf35e6a5e80792de19b9478a56bb2450682383bef2e9d8fabee291f68b85ae35ca8895256be91e68049112d6c13c17977c3e65537dd94bc9cc

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

MD5 d222b77a61527f2c177b0869e7babc24
SHA1 3f23acb984307a4aeba41ebbb70439c97ad1f268
SHA256 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747
SHA512 d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

MD5 b5ad5caaaee00cb8cf445427975ae66c
SHA1 dcde6527290a326e048f9c3a85280d3fa71e1e22
SHA256 b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8
SHA512 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 df150836cb8285acc392b75e6ac62975
SHA1 4ea2495b6608361d32b76cf4f60425bd4a6b02ff
SHA256 e9870f8aa405cc43598655412c80b75e281f44653ff2ed992f43f38788fdac8e
SHA512 6857755b3546e55574de97d444a51e7bdb3656bdcd6b0333dbcad7ee0d582f2ddd46fed0519d78fd16733cecf9d01b5ba705186cfbfc9f59f1ba49cfcbb611d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 b546e52afd668aadd33edab626d55703
SHA1 47cbb5993c152e11e8446ad62cb7d177d53607cf
SHA256 52de6606e0bbf9e3c79b07e1f6193ca32a2a552364d48b5c4e265ecdf3a27b82
SHA512 340dd457871815a53d127b2db1ddba1be68ffbee9e72d72b55cad8096b17f778a0be1fc7ee44a266c03ccf08701ae780b37baf419c6776c1a893396ef1338107

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a69d9c54a98dbd6db2790434b7f8bfb4
SHA1 01ab04f9bf3ea977b9d15a5c69f1d25839c6a1cf
SHA256 ff3cd20d3a37a80f3d9764cfe52353fd344a8509eb7e057b5ee2205a2d06a60b
SHA512 edf23ffc475a68dcb8a855748aeabed3a2dd330c43b74b47f36219986b30eee69f3ccb0e28c86b1b8d83bcb694d16e3b87467e9d47f85877612a88dbd02ab01b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 97b269e050650d4f956b969d7c8910f9
SHA1 e8d7b0dc71a5a3722b576a9d1950600f0bb63455
SHA256 1f634aba0766e822f8bef1a8b959df3892c1fbc310f92e5011e16b7a9f90eb7c
SHA512 813938046c3d9cf5dc9dfd7d5ec91ec2a7ea7ce4de806e7f7c4b704aa6a0e41889f544d15454f6fcb0fc82228495ecce8aa3e0a0b5bb4131d2ce930b45b09905

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4f4306f080dc804bdf7aba558ba2b19c
SHA1 d8e4a2dd3cc25b77a83bcd4bfddbca75be91e171
SHA256 d056b640bd5132bf8eb1333b4add3308f53bb4aac4b2a316f0ee315fc9baab70
SHA512 3ccb54afa9f422b45a6439add606891d1cfebfe37e89686974c8f333fe1e81b27fc8153a81f2e4b50bb7a944c0b20f2693f6fd5d5d0843ef99b67a726152eda3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9e5efb1c7c24b4cab0476529aab47033
SHA1 0671a5fddf50bf58e966e598f1c1b7a539c50e7d
SHA256 1c2bc353e1ab84e557de633e5344abf150bc318cc285ba8d30d5ec1a7c064ae4
SHA512 82cb8034b82df679ae3e1ddb7b4266a8c9be0fe4c420b567cd1099a49fb5ec3c8bbed7be6cd00e516007d6a5cb0dd77fed19d85af7947d9dc5bbb51955022c09

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c5407d8a7fe89d8ebc6c46d4df9ead08
SHA1 1cf6ea38029a17a46866b5c8f04519661676ca0a
SHA256 454f590e72ca4ed85013a22ad0109b4e747c58ba87f5ae7e7b0ea64b1bf36bb2
SHA512 710f2806f3999e335ccf9142115b59e835f1177a02f8110cf0a89ff04f978a0d5ebe2e50186abbd35e3bc944ba89dd9e5ce524081870bf119fee27284deee309

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 211b8bf6a36ab4f2f6fd6420193da699
SHA1 e0db5c94d1ae8a9146293dba3b0ca17de881c164
SHA256 c66ba4b3f3b6be1fdcf174294a3604d47693e3f227a3b2286018610ec226af35
SHA512 ea942caa2631db2a2c1c2dac62a94de0114647b9b419f30ca6a9582f85f11a560782ec098a44eecd9cf194a7b51e86558896cceba8f5b3425beeab95aebff9f4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d4c5531954f06f10c58196d0cf370efd
SHA1 1a1fdb372089ae826f19ee138684251753742b2f
SHA256 14cee1e72cb16d4367f495d7b2c5e3f1f2c0be4fd7e1efe78ec4a54273bd6567
SHA512 b56f1867d4d2467442ece9741857bb297a10bcf4fb30424244a0cc8e22355f73f00283dcc4c2d5892fe8f536547a3e34bf7e4049deb33757bfe631f279d7c3ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b8d7b160c285273df8145105d128f7cf
SHA1 a97b99296ed963d78ce2053681ad7b5d8725e9ef
SHA256 0af87c041c11142c9423774f1148004a91ac227ae384528f5d721c5c02920fb0
SHA512 0ad3ebe9cbb349fe66f080eca3ed8f9cb2dec124d690cd80dc975d1296e58de29572d5a740b9b662ffde8fc970e35ae3ac0932e742a31b28fdb600b8953c2563

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 166be0622ec033f15c28e93ab0a178f0
SHA1 46d3a398b4909d1686a539f0b54d283807857863
SHA256 974c5a0d293d356e395e53f94b25809d5e4a228f2f2f3368dc847a7d352dd194
SHA512 09a4ffa08f75a90a2e02e027ab4e809611830103b3e2814c053aa838fc182d4d36fd81960e4df353a36300ad3e58c01b8b3c5cfaaaf36c88d1d666a7ea7cc508

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d35f2013b29bb4260289e5c973c4ba7b
SHA1 bdb4d74fe4a4182d82bcf3edfc269b1b3549fb76
SHA256 e8ac599ff2a3f7ef86e3fa7103a11fc85bbec65230ade45447163586cd800467
SHA512 8eb6a6039b62563100a1c35bde2b6a91b941e877ebf81125ae646baccc9d85c97e483bca5778dc5518702c3ca91b918b4e01fda441fd06464c55a12e5506fa36

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7ac715f40bc20ada615fbd3622657c44
SHA1 cd6e20867cb719f2169dc577b3ddc2fc12780846
SHA256 8b4d9c82e39ecf4f56e214e4ffd113e39d651af63d83e374c52c09b78263cfba
SHA512 695407a63169889e6b85d68b0d43c30d943c890e60566d3f813b8c1109bd1945fe3ffdc9d36022e3936d8aa291316cfceeee8b2097e66864bb1271ba8a932c8c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cad23082c335f128565b34b0fda2e5e7
SHA1 946c4cd8efc14e2a8b5c70092344f4d2abf26507
SHA256 b6425d009715db41fe8c9d2f3aeec1308fb7aebbdcbd26388b7426fef618ca45
SHA512 ab632afb93673e0b495edad17618ee5d874b4910efea19bee66010958468e766a9304423ff82c2f00a530bbaf22f2dfcec5132f829ce876a46c8689d3abf8773

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2f1d1fa520c323d4fac084b91e4ab84b
SHA1 6e5b49b869040cfc14966b8439d16a42f27a40c6
SHA256 f7713da63d422c259d2685d5d468295ddbd318dbef8e1e31657d2a0f199f6fe0
SHA512 1957d376eca83c8111443b263c4f6f012a780bd81d6d66b20cf57f54897019d51aa6fca88519e58534f68489200921d7562f3368aa1804d71c2dc4f418bcdaff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7bf9465590387e282c6746e998a43ce8
SHA1 daf6928607cb51d697ac96bd428ff8e9d894949b
SHA256 803971dc4490d4c5914f055d3a05191724c40058362d87624ef683d17e925ddd
SHA512 1a014783bb88627a884735f19ea9a186282260581132f3199b2ef7e505a6587221398e678b45f5d0418bc8c8a6e2a23d55e40ae2c083ceea13dcfee30668fa33

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4687f2097b6f5093805c9fbca6befb8a
SHA1 02628bb20a8c7cec770204a27655fa5e1b8b751b
SHA256 1b4fcdc310d2cfe80ed368a33029a7656474c45d2c136b02a2292841ad207adb
SHA512 226d20829cd49adda9a6e9cc04d5c448d068ae1030d9c478a478eb7ab6a42ade9e50e5c2b8a54bf8938921261401dea29e32ff84f7d0813bdb1704c055b919f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3252c6f8f700c78708f47f41b42a5d25
SHA1 75446f45dc81a01abda8985d726ec9f9b00db343
SHA256 71db19b016d9c892f17655a28f707ff56431f801a5c9cf9eb1bd958f3524c721
SHA512 5561dd3a255a51854406f988da2bfabbf2ff32673ff26ccd364eb65c823f06581973ea24e2ab70801a3868642096ba5a75d614c822e7554f5f28670e5212aac6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\b5d07b88-b594-4d6a-9f25-421e106ef004.tmp

MD5 34cb68f26979400702cede88c0cea4fe
SHA1 c656e5cf5143c1b528caec15828aafff30d3e7e0
SHA256 ee158972d6fd00304849a423647032a993e936ec5c630673aeea42826d4fe7c0
SHA512 e8f748ad528583de4246d3390f42388d4d2ad449ff395d4d82337e9478ebbf7459d33158097d61818fc9bb5fa2b34741bb55482e0d9a2871f4e0200adbc89de7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 26f74cebed9ad49928d124b55dada637
SHA1 3aeb0e189d3b1c899e73f3ce44b200a298857c1f
SHA256 1f760d0bce86dc8c391ba96af4d7a230977c319dee0744bab2ee419f79da9129
SHA512 cb72e720c790318516a041dfdd4a2f4b0eb2b9ea7883500262d8998065645a9b91fb8b9058fb924a63916283b0ae24ac697974f294f85db420dbb958ded3278f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 89b8a3c35aded30a4433997c8d73a4a6
SHA1 4bfc9b09b6ab3b6a2884a646ea2772242f3faa41
SHA256 ff04256e670ca3e01a72a808efbdc0624862a0e82ce53195f6dfdecca8507cbc
SHA512 aed3465e997ba5fa82e7ee6a660d0cc47a1f78a177bc2d661f8f8c38eabe52e0be90bf99b86989b9a67cac0df5c1958092c244ef93f5c12331b659a9ae107f20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 79650bf13ce54a4d0f87f75c811de725
SHA1 ab4a2f4fa09a08f42e9c33f99dd9e1d912d1d646
SHA256 67cf2dfc57e9f25ab6759a695fe15edd95243ec5fa66b7792f79c42b6e58edf9
SHA512 9dffb04525bf13317a36788bf36238f5b3c4423b6bebf9cd0d90f2786bf98421b2da35863e54deca73efeb4fcca5c2d3e6cec3d2532b9482b989a3ebb9b08582

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cdd19593708391698002944c5f72f0ca
SHA1 3165bfb010f9e5ccb3e2f7ff15cf6ee122fea7ec
SHA256 1914d1c32d9cb229c987b4ac3b3f83057b8e8e10805f974780dd652c0f0d8f5d
SHA512 3b514c98cc26fc165382487c47b2795456169e5cfadb8ced1ac89455d9cc4f25e06c3737fca2d7cce41dadc5551fa4db289c3208ba8f9e7055760043ad5c640b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f26bb801560769b1f7ed0d539bd06bb5
SHA1 9baed85f0678ee6639c0d2e6486b11bfb3973a5f
SHA256 0b26c487529b26e64ae2d4fd311f7c72119e5bef2122106ca96866b56b56a975
SHA512 adce89ab1ea6f67bab0d50aa442ec9fac31211b15df3e796ef0c95440f81a1f49bcc5032018de17df0e628a117b7c8116ae4e65537679bd8f1e09c4cd5620320

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a2d2485319e396a6ba38c4fab4739121
SHA1 ea9d52d2ccddd392e74372ec7b35e06e2eba923f
SHA256 d321d4c73c19f512a5e093765d56fa3bc2ee6a50de6e9157bf9bb9c632fde3d7
SHA512 429b310ba1ba41c1ad4ae516c9d3e1c8d914125ba65cc47ce83cfd94dd654a723384658f3e3121e5361ce1a204f9283e7519a922cf1608f5a57940bc3994f7f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ce421c848897fd0aae22a1f9f1b0eaa5
SHA1 8c38c0d244c1579565aa0879fc775ddbcb26b574
SHA256 f4f58c445b1f1ff7e9fb321c8a9690ccfc958f6789991036cfd98b9b22fb1aac
SHA512 e3da52a707ffe899fb51989a5b00a386a1981714989433a5d8b0e362de0b145aa9c70d7c45fd6588e63bf6dbdffc2c01fc2977ac203f784a7d24276add9f77a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 47ef52ec23a0338b13dc768f66e87a06
SHA1 be1639953737e6537925a93b73a3f865b8b78943
SHA256 cfc1ad39133358b01e18a347c69632bc581b1f05909d0995bae9d15db4ea5578
SHA512 016bf12ed8b62e1f0155789b5997886caa3c4064960df0ac10ab1bbe4f9eefd8e477f5db50e33b01ea667e31795fb94586ece54f476936cec12f35f508499df8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 96452914b769b02d95195609004d0a29
SHA1 4271b2a8cff599949e0e1982245962c43de74db7
SHA256 2bf8cf11b96bbe0c5350e80410f0d9d9175d1abb846bb1b7cf6e79d45c654779
SHA512 132e7ef3d21b3168e1a0280cb6ec367b0449da95b3b2619049e7eb3f1cdd670b180bd38070a5467af65f3c92ce1f02f7aa56bc86f3250a34707a1458d819da1a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\0d83c1b1-be70-4f8c-9655-43a8466593aa.tmp

MD5 0260074267b5da1b5fe3a43a24c8bee3
SHA1 f6662e8c392a95b054b202a880594ae40921ea20
SHA256 a669db1cdf69263b86ab228825fe86c30faa3c7d03a4ea75826ca0026355936d
SHA512 56218c7dbfeebe45c1f4858aa654bf427e2e14d55b7841949701dbb46efa3a0263639a56f23e8bd0d0b8eb518219fb0b1a242a7a05c01fe14675695b9d7cc65a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b534c6434760f2bc45d4f45435c1eedd
SHA1 8549a39f66c95dd8b3e984b9e7fc34551436ab00
SHA256 2a75d24e1d35fe697bc95ac0690cc1ee2c7e86e815c0fa63625311c4f9c8020e
SHA512 b483c947be726257eee1e193870152d606ecad74db276de3b5e9c428c4ba8b6f3125709a2b19545ecbf834f42fabcf72d1592dc7b686ccfc91147fccbf8fba53

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3815a0776718e1b85cb815587eeb1db0
SHA1 279b33601e91644da2374e5a79339ef3ad1ba670
SHA256 9b4da85ce1d7ae04d84d8e5f96466529329ce6e0fda938eb313a33a0d537ea23
SHA512 c4da7ba4a936388d27a7f678a3c9fd9d2613da9c0c75ed61ab224eefaef87005fd84f0b87bcd52573880ce4d6063cfa54c3da8b8ddf0cde8014d30b0b7a75389

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 44dedfc9c0109f435eaf382f90efac28
SHA1 49d9255ea5601f819ea909ea59f2326bf17b4e55
SHA256 51e81344cd24a9b1f7da8558285a1f6fa03e6d77dff736e50c51f5d39d8d2ea6
SHA512 7976f29a4b7db39257c47364f3272b19477312388477df6a007eb74b84c739cf91f7afc18c430e07087e8b61e340963f4af83e878015d952e5e4c27388fb9bbb