Analysis Overview
SHA256
4756b0df0279c72945b8458636ef48a10a120ca0c5aa888acf380bf5df5a3f13
Threat Level: Likely malicious
The file Screenshot 2024-04-29 14.08.01.png was found to be: Likely malicious.
Malicious Activity Summary
Sets file execution options in registry
Downloads MZ/PE file
Modifies Installed Components in the registry
Registers COM server for autorun
Executes dropped EXE
Loads dropped DLL
Checks computer location settings
Checks installed software on the system
Checks whether UAC is enabled
Adds Run key to start application
Installs/modifies Browser Helper Object
Suspicious use of NtSetInformationThreadHideFromDebugger
Checks system information in the registry
Drops file in System32 directory
Suspicious use of NtCreateThreadExHideFromDebugger
Drops file in Program Files directory
Enumerates physical storage devices
Modifies Internet Explorer settings
Modifies registry class
Enumerates system info in registry
System policy modification
Suspicious use of SetWindowsHookEx
Suspicious behavior: GetForegroundWindowSpam
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
Suspicious use of FindShellTrayWindow
Modifies data under HKEY_USERS
Checks SCSI registry key(s)
Suspicious use of UnmapMainImage
Suspicious use of WriteProcessMemory
Suspicious use of AdjustPrivilegeToken
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-04-29 12:15
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-04-29 12:15
Reported
2024-04-29 12:17
Platform
win7-20231129-en
Max time kernel
102s
Max time network
80s
Command Line
Signatures
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url1 = "http://roblox.com/" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url4 = 0000000000000000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconPath = "C:\\Users\\Admin\\AppData\\LocalLow\\Microsoft\\Internet Explorer\\Services\\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url2 = 0000000000000000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingDelete | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 105c481e2f9ada01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url3 = "https://login.aliexpress.com/" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DomainSuggestion | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\PageSetup | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url3 = 0000000000000000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url5 = "https://login.live.com/" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "420554841" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingDelete\C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7CD01943-8EDF-11EE-A140-5ABF6C2465D5}.dat = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\InternetRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url6 = "https://twitter.com/" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url6 = 0000000000000000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Zoom | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url5 = 0000000000000000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000ea43b027696af14b93efc0131df448ee00000000020000000000106600000001000020000000cba532297a430780ae693f2af62bad243ab180117f466d22a5041e4299d00505000000000e8000000002000020000000b59ef659110ec463f4b4b9a3fb13a9f2f9b211d10906c590c0a9840f6c580f6520000000d416f6131b6aba3caf1801e5ad2d7c658c78a438c7a240ca50ab9b61d5a3dae74000000090474a7174f34f1133bd199f5c731bcda5673f57de5b8248a648af8ae24d4f005cafbfdb624d3cb57dc4a5a15eddaf9d8275d349d534c135d30719e7caf59cdc | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IntelliForms | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{456D5AC1-0622-11EF-A140-5ABF6C2465D5} = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url4 = "https://signin.ebay.com/ws/ebayisapi.dll" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url1 = a03c620c2f9ada01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url2 = "https://www.facebook.com/" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IETld\LowMic | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of FindShellTrayWindow
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| N/A | N/A | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe "C:\Program Files\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen "C:\Users\Admin\AppData\Local\Temp\Screenshot 2024-04-29 14.08.01.png"
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe"
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2192 CREDAT:275457 /prefetch:2
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2192 CREDAT:2307084 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | api.bing.com | udp |
| US | 13.107.5.80:80 | api.bing.com | tcp |
| US | 13.107.5.80:80 | api.bing.com | tcp |
| US | 13.107.5.80:80 | api.bing.com | tcp |
| US | 13.107.5.80:80 | api.bing.com | tcp |
| US | 13.107.5.80:80 | api.bing.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| NL | 128.116.21.4:80 | roblox.com | tcp |
| NL | 128.116.21.4:80 | roblox.com | tcp |
| NL | 128.116.21.4:443 | roblox.com | tcp |
| NL | 23.62.61.137:80 | www.bing.com | tcp |
| NL | 23.62.61.137:80 | www.bing.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
| US | 204.79.197.200:443 | ieonline.microsoft.com | tcp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[1].xml
| MD5 | ead346dbe839c6928491d6f47a191b7c |
| SHA1 | 77c90fb94bbb454f2d238b7f81ecdf400f68cc0d |
| SHA256 | 494a5a0357114c2e8fc8859b7a3bd78b6096a9d0b6c6192556cdbe9dfbe0b0fe |
| SHA512 | 1a0818f0049023efede7f1d7ab83888ab80c2bc24919b2290ee8d66f01b4fa0705019fd0286d06e409a4022be0846eac7b739de2e6c284eb6f12480f315411b1 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[2].xml
| MD5 | dc8d5bed841a32e699d0ffe15c3c0a52 |
| SHA1 | aae597d571fa9443ce64be7012d91c5f4ee9df86 |
| SHA256 | cdcbfb9814ab8fafb90c4ab7490b0be85c381c5f41d0482391a2a200ee397a59 |
| SHA512 | 5b42cc5f9f1098a77934ea78946edab5f85d324b59e56d68424bb60a060059ce00aa17cde1d20199610279688e56d7092562d821b3c4d7eea4da9b3f5c67c6bf |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[3].xml
| MD5 | 1b63930808ddc4193a053cee7841438a |
| SHA1 | cc8f952c32235cbabb0992ceef915ed8372bb117 |
| SHA256 | 380856d6aa3dc781a66ae9f0be0ac21f54e2fa99935254a4aeb5842db7dcfe04 |
| SHA512 | a98b9981f1c95141711af2d009acfa3a18aab8e4de9e49fddbc11212cd1911c84d0570e8d1dd21f752aa3d9ca56216d4d1f6296326124f4584227fdfc61f5e9e |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[4].xml
| MD5 | 3fd12fe0156c7fca5f770b9d80a4a3ca |
| SHA1 | 833280b9038f430337680332d9104740fcd7697c |
| SHA256 | 009a417994f16b9967986300e3db6a69d992a885a6bd59299cef07675116014e |
| SHA512 | 828a1c3f31074627d62dfa374e026d404a738c4f2272877f0c3938032b589399644254674a38f9d2a5450b85a80841289ced8f3e58ff17ed08191495fe768f93 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[5].xml
| MD5 | 5351533a035495e4252a3d85471bc366 |
| SHA1 | 6927a507daa540e4e0f3bb760b486a252d970103 |
| SHA256 | cb756cdb34a670c63eb4b8cc2d977af9029a4f89447c66aaf802488aac1ad3d3 |
| SHA512 | 77dafffe46edebdc51c48cce95472360b44e0d9e8e268254580db20a13bcfdab514f4d7e0b4c9665e5f0ceb0b75456fef8762c5a03bc4d54ccce608a6b5c5a8a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
| MD5 | 29f65ba8e88c063813cc50a4ea544e93 |
| SHA1 | 05a7040d5c127e68c25d81cc51271ffb8bef3568 |
| SHA256 | 1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184 |
| SHA512 | e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa |
C:\Users\Admin\AppData\Local\Temp\Tar525A.tmp
| MD5 | 435a9ac180383f9fa094131b173a2f7b |
| SHA1 | 76944ea657a9db94f9a4bef38f88c46ed4166983 |
| SHA256 | 67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34 |
| SHA512 | 1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | aba696adba4fa30b760af64452ca860d |
| SHA1 | cc1de00bdd8696f8f75ff3a33f7f1a683443b5ad |
| SHA256 | 1aa7829a55f5c445e235abb09b93a26485257d1b56d74f58acc2f659920065e2 |
| SHA512 | e5c650a5319a2e7b543e96ae8e4bc9dd0ac843a599797fba8073b18366f98111b7334d7f3992ff990918e3593f2907abc4397de69c0344cb5f118f65da4656c0 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
| MD5 | a266bb7dcc38a562631361bbf61dd11b |
| SHA1 | 3b1efd3a66ea28b16697394703a72ca340a05bd5 |
| SHA256 | df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e |
| SHA512 | 0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
| MD5 | 0e339acdd4f38e3f7d45d3f9a23a10ed |
| SHA1 | 31b9a2a757154ade3d5d62a315d356cf4b1c1bb7 |
| SHA256 | 7fc0783a33a30405e4aed6ac3d6cec67d54d9c3808e01357afecb00346990b8d |
| SHA512 | 7ee023a3a2ace5d62cbe60fc0ad9017761517182cbe75db92b674fe04ed288c64947a63ad7564010333320b17925534047aa95d57551e9f6de313bddd22672ef |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 9523b9919e0d1520bce11ab4d0448d04 |
| SHA1 | 1ab689763e749797fc5f93b59aeff8f27d6bf5cc |
| SHA256 | 875f38313fa927f52ecf4c17e13cd9793b24ef3a133168350a3ff6bdb3920e67 |
| SHA512 | 99877564dd1ab66f40e6bc6a20bb3900f6866c5f824c4163f2ae2c19e76daf47d536e066bfeacb80ead3b652e6a9f63b2b3a00b16816c8407c0f379df4798ec5 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 382ba9e635d9a86044a56832141223ad |
| SHA1 | 0be3477d3c0c4cf8e4e86f318a0b8a5089c49fdf |
| SHA256 | dd6e04fb7381ef77ad3b3326941ec34198a5cc9337902921b0c84489bcc38916 |
| SHA512 | 1a366610a324a97439b25005053ffe99267b29dc5210e56930a42789bb0949e2e802eb3c7c6f196ba3d893509c89ed07fc058bb56841a09e4a35d3a35597e919 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2addefca38c7e9b504605349fadf1ba1 |
| SHA1 | de23e6c0792bfa17019e8be2a7bd91cd18cffb04 |
| SHA256 | dfb5b65c067bd6d91d64b5f19c127ca4861e81e66be32c9ef0649493fdfad934 |
| SHA512 | 2064a2afb81fd0e0af51d9d4b87f0711c817cd791e8f20f79c88b5d124e2223a01c0a801b5d007f4a3bee436e866ba76f8b5177c514902e34ef27f90706c5cd6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 124843964403d41225bff8ca64776159 |
| SHA1 | e052e54557005b56a4fbe1e0b0a0db96761ec116 |
| SHA256 | d346919ae4984409c7e992c1c86fb780d447f65f76896eec41530660900e8847 |
| SHA512 | 948d9ec3472d1beff85cbe0598dd8145b7db6c6cdfb58a954981c7ecd997109a341fe9e8b16b285e916145e27ed8139e2ad60cfaa90567acdac972791818c3ad |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
| MD5 | e4a68ac854ac5242460afd72481b2a44 |
| SHA1 | df3c24f9bfd666761b268073fe06d1cc8d4f82a4 |
| SHA256 | cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f |
| SHA512 | 5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 371fcca1dba66ad1dbfb0411d43c77e4 |
| SHA1 | d827ad3d8790000c9389983ceb58d67a52edc92a |
| SHA256 | 213a24dd72ece6be69fc5126c1c82a79300a1f034b8abdd8edebe47556b06905 |
| SHA512 | dc9f852d090cc4fbd01a8253a93866b9b98e261f00d18ff16e7455d83e188f7b4649d66c2dab6bdb89cbc1abc2113dba6adce0400546ebd2340dfad9076ff104 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
| MD5 | 0d41560cc67e3d7767a12ff1fac8ec22 |
| SHA1 | 07c2338d0044323cd587061ed978e38daf9f197f |
| SHA256 | 48801d5d9879867c2142a6b450a28e094abd80d61b4298a8afb170142ddf338f |
| SHA512 | b9f7ae6e595caffcd1c4bb96d46daa4ff4df85af279c756b037a05a5e8b0da7e5cb6fae0bb7f10e016c877764b2e49bcc59c477aed5b515563d53a6d7a622cec |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 113943676b7f6013448af44247e4bf14 |
| SHA1 | ac6e6465d69d363772b9379a32f7d7ed72ee1240 |
| SHA256 | bc9ef5cd1ead587fe53c59c66c20c595941ecc7fcde4958da78b9292d2e18604 |
| SHA512 | 58f6a01362ffe717cd8625c5787599927997052d1db47163b14a3d7a1a2dec9c35497f1d559bce4a5027a1505ebf685edf10f1b38b06531af776ac76853ad56d |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f2c18e320560de8466b6971e779ff038 |
| SHA1 | 91b2c9b9bcf75c78b310eff858ed0dbd31ed77ef |
| SHA256 | 67798e4c18a92d93c7d1ac3bac0b197ff85fc594437684688461294a1f366ccb |
| SHA512 | 0b7b999e6494aaa18ce215bcee27ca1cbee6384981b48c44f1bd81d90826dddb4acc4082c21da52303770f30bb6493635dacfe0ef03d52bb7a91237dd8fef31b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | bda1b0871d51cbbf7cccb9a69ced1f61 |
| SHA1 | ed4baf71930008c2ad3230276527fc3ed1ef4453 |
| SHA256 | a13c789c9be93aa87212feb52dcbf4c79af2dbc5ddeb1810c6d9b9e73c16115e |
| SHA512 | 3448a6bc56a77941456022a799d0da0b05574178470dd6c13e72902625b2fa35e15ef7f33a099c127a43019d6a2ec76ac57d72236eacd8a105f7ed50924bef77 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d23011dccb0ff7925df07b36f8b92fc9 |
| SHA1 | ce3da3422da239e991b3f747a88756398506a6e9 |
| SHA256 | eda436e20b35ed3fb551b07f220f292291d7879a92769de398ad164c2b0c6db0 |
| SHA512 | 3b3b41bee207e7b6a379da1fac3b0bd98fa7b38fc67cb7b8e496d72b9e2501c87d58ab8b459e88ceb449da3e61e431d1af66098e231e9c378631ad5b8d39b7f8 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 328ca80628cb8ee141b375a78265d7f0 |
| SHA1 | e7faa12743971b9d2d62193b726d34c7784fa63c |
| SHA256 | ab7baad3a926b56d2c7d24b50172e60aa0e9d1c2d36864d045b52bd0a0fdb2f4 |
| SHA512 | 8ae539b295cf2e153d79f1f393fd8466039024cd4594bb4166e1e05cf114d3e4fb2c914df71c9f9fed4823dff39f6f6434a63c57e7ac75bae045291d6a2eb353 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | d39e75cee1d3eb2a15daf42b5a7b8659 |
| SHA1 | 81b837ceb754a7e7b9a26d397811a38f444eea79 |
| SHA256 | 36ed0079651eabc5ae240ec2c598f0e45b6d7cc4c071d4e61206adadae43f85d |
| SHA512 | 0fb8e082a72d2763ed1baec58968a319e5081ecfd53174c2ffa6dff52b4aa5f085ece01ac66d9e056f6e9d80f8dd61dff3d2ebc6123b34ee26e3a316f7371608 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 41fa5b2c4d042084b045cc3d20570a0d |
| SHA1 | 2fcf8f25e897876c30de6a8e0e292c195d4420a9 |
| SHA256 | a712514dee0e3ee422799bd566badf4148e96a799f5e8eb77fdc8e050d4e4bcb |
| SHA512 | cd4b422a0c5c434b57d558418e680d535d767cef03c1abd8735da7d47758603a4d07192308852d1d2da096a635379d40795fd79a3a744505c0e5c8cfb70513ec |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\HHDKXJOO.txt
| MD5 | e8677b2a66452f5f1d91f467b9ce7deb |
| SHA1 | bc80a950269b570e204ed087ebbc778a950a1265 |
| SHA256 | 72305b2f1bf3cbcc1baf9ddc75fd253d176d897edaa2a80af212afa637805ba6 |
| SHA512 | d4eae41c90673f3e36eef86a1c67e1f5fb7410d0f0c40c15b1cd99372fb453bc8aae3602d98c9a2cb0f8a95445c6ffaf302bc78c7ffa5c19ca87a66d025035a0 |
C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
| MD5 | da597791be3b6e732f0bc8b20e38ee62 |
| SHA1 | 1125c45d285c360542027d7554a5c442288974de |
| SHA256 | 5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07 |
| SHA512 | d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f70f393595d039bc10bc952dfa27120e |
| SHA1 | 7a1e6d88fe4e07dc3cc3994b96b509cc40590777 |
| SHA256 | 30957dc45846ed04e9ecb67c548553b1063b3fa4ea6b86c5229685826afd8c23 |
| SHA512 | 47d217a1b4fcd3d17bd75aea445c38f5ccaadb092785af44c58302932016cd511e977b3541640d22653d4b94daaee55a3320ffe65f702bf37b05e4e0d0f12aa7 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 88a386511ce76c9bc5dab51f2717fb86 |
| SHA1 | d24ccd7b31d62f68865a12f274f0e317c8e6a1bf |
| SHA256 | e13bccaa9704e275e2933f14c049e2c27e065a0faf95728d44c2fe297ad690c4 |
| SHA512 | 48ef58aa8a1a5c78c26d1cc8d9af241f123bcb8949f20efacf52fcd2fdc1e5dab3d0167269534a063f6a959cb21ad0ce61a7b5e272d3e18433e4b9e56417d618 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | c0b69a97e64d3ba40ec612d83ed883d6 |
| SHA1 | 3503547115fcc981e10f6e56175ed7c159fba049 |
| SHA256 | 780b1e4185464b282003bdc5002d25f5dad8d3a6cd0d73013e4df32fab51d240 |
| SHA512 | 2c7da31d855edeb27ce6684a3cb1b23c2721efc60191290024871416fc8ef6ae63c039dba452a10f55728c6e9d424fa9b33d1e407810cf2a5e62ccc965b8726b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | aa52d09a1a0693f1df15f0fbf0057286 |
| SHA1 | 8bde2b18f9ffd83012ccce9783ac3a7a82e55298 |
| SHA256 | 9ee3df579f482e1b2b98f324fd0a56c136b59b9bf81597fd484f092cf2e31948 |
| SHA512 | f32bcc834c5b2c9bd4fd5483e9be3fc5120c3942a132e8e4d273fdff2fecb023133d58bc890f3c229cf509a8deaff728e62b2231329ae524acfb37a059283000 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | f079f9eaa9bbf81087f2f81e6186c874 |
| SHA1 | f8db6ab3b775c6014ca1d1a9cefd7c051654b614 |
| SHA256 | 936d6ca1cb5c1c95956facd5c26f3ea1975e535205c8523b282801dcc879b066 |
| SHA512 | 65d1f16f0972dad3367a90ce8d80c86a900d24fa128d3f725fd3d8790295e3638c7f709583e01706a2475d692153a1486f0385af6f2d897bed78c7153e3944d6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 0e37d5beb9b1e79f0c1481894bf9eda7 |
| SHA1 | 68cb1a9372f1e72ff24ce2c519a3aeffce95629c |
| SHA256 | edae46ee97511ded4180abe5604a0859cb698f2b251f20a3dd4444a92f29f898 |
| SHA512 | 30b535b5efe97b7fe3bb6175515994c9c8b33a12ae2197440cfaca4e0b50e3464be63baafdf9aa2abc9cdce9c8416e0c4075b755e38712cd5bd3e39b66437e2e |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 8d2b8403303e3cb95852ffae52f5e0b3 |
| SHA1 | a70ec203ca769583ac7d87d4c8b2f1dc98dac480 |
| SHA256 | 47ff5d06bf7b22f18d690f823e7986b3bf27e425cde44bffd6d10404c4f15614 |
| SHA512 | aaacae0e6c57e7841188246de643f3bd95652b34936077f88b40aac40cfdeb43fb5b55a8138c90787cf6d06157f9a94bc7734723a66542c8c5981e405052c621 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 72c3d95826ebcdb2f10a62d0a56c53cb |
| SHA1 | 4a6ce17367f025d5b969db6d5d9293354da17b72 |
| SHA256 | cd4313b318ac853b95ae83a7619bb4244864bca3a0ad15363d495630f01b0752 |
| SHA512 | c3fbbd57043a194b99f7f9054fee68e33e161d79c17f0bdf835ca6d7682c27774a3d33a7027ab2094cdd196024f18da3b5b3f5323cb7ca4b34ce71d851da49a6 |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 18027ad4103cb3294741a3c4c9098423 |
| SHA1 | 4f98ff0c316f38ceea288cec857fb3be3323048b |
| SHA256 | 58e533f56a4d9835e0d9ee2ee7256aedb5d88235cf67a78eafc863c30ecefa7c |
| SHA512 | e787109d5efedca42214817de3435c54b846ace4a68e7cecbf0a66370f8f783192ab1fee559eae3eb90ca685e9c2fae6d1eafd13c250c8a20240d6978b69d08b |
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
| MD5 | 2e185431eda15267bca9bb396eab5c58 |
| SHA1 | 3d099aec8820ebaf9cd970390def767696c87c84 |
| SHA256 | baff5af77a70828a9cde3d72b90dcb3671720eefbf2a1f816ca7e6406763769a |
| SHA512 | 7a89fee5d68cd3e570ca45a177d4dd54eec5688f11997e683056a0d32c14e87a0ef2600cb5385ae9fa219fbbedad940933b8eeb0827c5744f39265e673801966 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-04-29 12:15
Reported
2024-04-29 12:59
Platform
win10v2004-20240426-en
Max time kernel
2580s
Max time network
2581s
Command Line
Signatures
Downloads MZ/PE file
Modifies Installed Components in the registry
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
Sets file execution options in registry
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe | N/A |
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe | N/A |
Executes dropped EXE
Loads dropped DLL
Registers COM server for autorun
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe\"" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_click_helper.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ThreadingModel = "Apartment" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ThreadingModel = "Apartment" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\EBWebView\\x64\\EmbeddedBrowserWebView.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
Adds Run key to start application
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=F6080EAFAE434F49824F2F5E7567F9EF" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C77526E2-212B-4370-AA85-62A43E6FF4ED}\BGAUpdate.exe | N/A |
Checks installed software on the system
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
Installs/modifies Browser Helper Object
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
Checks system information in the registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
Suspicious use of NtCreateThreadExHideFromDebugger
Suspicious use of NtSetInformationThreadHideFromDebugger
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\ic-blue-dot.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\PlayStationController\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VR\recenter.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\MenuBarIcons\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\Connecting.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ViewSelector\back_zh_cn.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\ExternalSite\github.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\icons\ic-alert.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Emotes\Editor\TenFoot\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\ErrorPrompt\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\AssetPreview\play_button.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\ButtonStart.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Radial\EmptyBottomRight.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\Controls\DesignSystem\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\img_scrubberhead.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\GameSettings\default_badge.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerDark\Unmuted100.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_zoom_hoverpressed_left.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Chat\ToggleChat.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\TerrainTools\unlocked.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\ic-more-events.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\InspectMenu\ico_isnt-wearing.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicLight\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\Controls\DesignSystem\Thumbstick1Vertical.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ArrowCursorDecalDrag.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AvatarEditorImages\Sliders\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\Edge\Application\delegatedWebFeatures.sccd | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerNew\Unmuted20.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\delegatedWebFeatures.sccd | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\graphic\gr-indicator-ingame-8x8.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\LuaPackages\Packages\_Index\UIBlox\UIBlox\AppImageAtlas\img_set_2x_9.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\Controls\DesignSystem\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\sq.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\AcceptButton.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Slider\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\ExternalSite\guilded_white.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\pt-BR.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_zoom.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\AudioPreview\pause.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\LeaveGame\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerNew\Unmuted40.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\icons\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\msedge_200_percent.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\avatar\compositing\CompositExtraSlot2.mesh | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\TerrainTools\mtrl_concrete.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\ExternalSite\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\chat-center.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\msedge.dll | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\msedgeupdateres_bs.dll | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A07DD0D6-7F3D-448E-94C6-43EBF5D78B2F}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\SelectionBox.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonB.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\LeaveGame\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\ug.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\identity_proxy\win10\identity_helper.Sparse.Stable.msix | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\fonts\families\Creepster.json | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\InspectMenu\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\fonts\families\TitilliumWeb.json | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\AssetConfig\public.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Slider\More.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
Enumerates physical storage devices
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags | C:\Windows\system32\dwm.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000 | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\ConfigFlags | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\HardwareID | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\HardwareID | C:\Windows\system32\dwm.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 | C:\Windows\system32\dwm.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU | C:\Windows\system32\dwm.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000\SOFTWARE\Microsoft\Internet Explorer\GPU | C:\Windows\system32\wwahost.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000\Software\Microsoft\Internet Explorer\GPU | C:\Windows\system32\wwahost.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133588666947545703" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}\ = "Microsoft Edge Update Legacy On Demand" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ = "IGoogleUpdate3WebSecurity" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ = "IAppVersionWeb" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{08D832B9-D2FD-481F-98CF-904D00DF63CC}\ProgID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\ProgID\ = "MicrosoftEdgeUpdate.Update3COMClassService.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassSvc\CurVer\ = "MicrosoftEdgeUpdate.OnDemandCOMClassSvc.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\ProgID\ = "MicrosoftEdgeUpdate.Update3COMClassService.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{8F09CD6C-5964-4573-82E3-EBFF7702865B}\ProgID\ = "MicrosoftEdgeUpdate.CoreClass.1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftofficehub_8wekyb3d8bbwe\Internet Explorer\EdpDomStorage\office.com\Total = "0" | C:\Windows\system32\wwahost.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ = "IApp2" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MSEdgePDF\AppUserModelId = "MSEdge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\roblox\URL Protocol | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ = "IApp2" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachine\CLSID\ = "{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF}\NumMethods\ = "41" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{77857D02-7A25-4B67-9266-3E122A8F39E4} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2EC826CB-5478-4533-9015-7580B3B5E03A}\NumMethods\ = "11" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftofficehub_8wekyb3d8bbwe\Internet Explorer\DOMStorage\www.office.com | C:\Windows\system32\wwahost.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.Update3COMClassService" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\NumMethods\ = "12" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84}\NumMethods\ = "4" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\NumMethods\ = "26" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8}\ELEVATION | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{492E1C30-A1A2-4695-87C8-7A8CAD6F936F}\LocalizedString = "@C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\msedgeupdate.dll,-3000" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{08D832B9-D2FD-481F-98CF-904D00DF63CC}\VersionIndependentProgID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Interface\{C9C2B807-7731-4F34-81B7-44FF7779522B}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\NumMethods\ = "4" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{492E1C30-A1A2-4695-87C8-7A8CAD6F936F} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ = "IPolicyStatusValue" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\NumMethods\ = "4" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\wwahost.exe | N/A |
Suspicious use of UnmapMainImage
Suspicious use of WriteProcessMemory
System policy modification
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe | N/A |
Processes
C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\Screenshot 2024-04-29 14.08.01.png"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff80c53ab58,0x7ff80c53ab68,0x7ff80c53ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1712 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2252 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3132 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3156 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4400 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4536 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4556 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4736 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4900 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5076 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5028 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4808 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=2336 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5452 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5464 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5576 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6116 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6100 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5592 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=3608 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5940 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5880 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5828 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5904 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3268 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5552 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5728 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=5632 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6096 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=3608 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=3460 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=1176 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=3208 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=6084 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4348 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe
"C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5872 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=1576 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=4564 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=5808 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=3220 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=3128 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=3476 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=3528 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=4440 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=3472 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=5776 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=5644 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
MicrosoftEdgeWebview2Setup.exe /silent /install
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RkJBNUI1RTYtRkZERC00Njk2LTlFNzYtQ0FERTc0MkI5MTYwfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9InsxNkUyNjcyOC1CMzZDLTQxOTUtQUJFMi02QjUyRTJCQjYwQzN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7RHhPYmpIR2ErblJhMmF0QzN3bytJRXBDNzgrWlllQVVia1hwREMyY2o3VT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE4NS4yOSIgbmV4dHZlcnNpb249IjEuMy4xNzEuMzkiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc1NTMyMTc0ODgiIGluc3RhbGxfdGltZV9tcz0iNDc5Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{FBA5B5E6-FFDD-4696-9E76-CADE742B9160}" /silent
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RkJBNUI1RTYtRkZERC00Njk2LTlFNzYtQ0FERTc0MkI5MTYwfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9Ins3Mzk2MkIyRC0wNkQzLTQ1RDMtQUUwRC05QjIyODMzRjJENzd9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7RHhPYmpIR2ErblJhMmF0QzN3bytJRXBDNzgrWlllQVVia1hwREMyY2o3VT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTEwLjAuNTQ4MS4xMDQiIG5leHR2ZXJzaW9uPSIxMTAuMC41NDgxLjEwNCIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc1NTc2MDczMDkiLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\MicrosoftEdge_X64_124.0.2478.67.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x22c,0x230,0x234,0x208,0x238,0x7ff6b0fc88c0,0x7ff6b0fc88cc,0x7ff6b0fc88d8
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RkJBNUI1RTYtRkZERC00Njk2LTlFNzYtQ0FERTc0MkI5MTYwfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntCRUUzNEM4Qi1BRTc4LTRBRkItQkNEMy05NjhGMUJFOEMxNTd9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7VlBRb1AxRitmcTE1d1J6aDFrUEw0UE1wV2g4T1JNQjVpenZyT0MvY2hqUT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMTI0LjAuMjQ3OC42NyIgbGFuZz0iIiBicmFuZD0iIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGluc3RhbGxhZ2U9Ii0xIiBpbnN0YWxsZGF0ZT0iLTEiPjx1cGRhdGVjaGVjay8-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_UDE9MTcxNDk5ODA3NCZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1ncXRhcFdBcW1CcEMlMmZNMGtNamNuZkF4dEZJMW9JZ1ZtVkd0STJsVG5kRlJZb2dPMU9vSzlRQ3c3Y0FsNkx0Y0M1ZE5ISDE0TXludTQlMmJ2c1hqb1RUbnclM2QlM2QiIHNlcnZlcl9pcF9oaW50PSIiIGNkbl9jaWQ9Ii0xIiBjZG5fY2NjPSIiIGNkbl9tc2VkZ2VfcmVmPSIiIGNkbl9henVyZV9yZWZfb3JpZ2luX3NoaWVsZD0iIiBjZG5fY2FjaGU9IiIgY2RuX3AzcD0iIiBkb3dubG9hZGVkPSIxNzI3MjM3NjgiIHRvdGFsPSIxNzI3MjM3NjgiIGRvd25sb2FkX3RpbWVfbXM9IjE2MDMxIi8-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-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" -app -isInstallerLaunch
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=5544 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5784 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:EXcbOWXMnkxIwXqB_GuI3iXHIXTxvsUrRxW4TUZWQf8wcTNiCrpR5K6QpbbbSDyrmnR-IN9Q8AfztzslZCDLq9_c5Chnf7JFXfOBm2d_HqGbBEEGkCDGsoCcJvoKqgByCf16LCeTpgNvtwGI58IipI2xN95MudAMlF3aCbrpHQOragAKMLyV3uvTCbtpqQOkctkfF7YBk7n8HRIIeL92j9oKDvv28gVpZYflbVnlJAw+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=4560 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:sKRNQ5fO1s9HIarfyp6gMPhZPy-phpsITwzAylwR_kzRHvGoXo2vN7-VSro2MlNcWD4-27j7G0QWI6ka0eSUj_dca4eD9yldPgLQEyjFuiTgidQtzldoQG4GFVLYAULk_QDQCnQ_nrPaSUXcJYLVpBCjkCFmSl7b2qOMstoi2ZvqukS_goVqd6E1XrcBiMx4aVAHijD0L3ppPkB2suRhggui4VvKZDtt-QJYgNJONik+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=5212 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:tGwFJ_lPOyMk5hXszViSTFBjG5Lh1QVKnWT0AR5hdAnRlNVVNHpgOGcYEQVQcqtcMG7ixPkrvbLnSMzFceg8ew4YAwbirbu6dondRwpksq_6nZPWjRUdFIMwF6s_ntVmnN4wOnoA7h0qN8fsm5kwlkn21b0_JD7wqVoNRcC0CCiJYXiMQHjoGm0Zn3w0j07EG-s9OTte2Vh6uF3005Q6jHMkJD9RbBgDFATvsvHkwTk+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=5944 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:sNp-Zrz7opfOcJbsbYSonxIMsxOtItTSslw_qmnKZxD36pERGlw9XOgzZtlMyxWBSAjrZ5g0lWXEbY4Lmz8rzwYRAhohBVOZ-NFbj8O9WuZFKBIIcZEb7qgZ3xxmD3cVAgOPTZLtli9o-eTrJZu1S_ekbbDfupqH_Vei0V35DeGq5y1_UBQTcXn9orE9n365J153KqSluitwGMO-xJQagdOabUCnmbfv8Cop6dca8QE+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=5268 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:bZf3YfJyC8kUcbYjZhtDkeYU3eFpTfYIBVWqeXoSuTtTFcuYeTtBDEMcwxfCWpctRvZ3sLqLrrYHFvaAM1ro_IwNQ59C-QzRu9aisjfNWDcUMv8G02oHQBb7Ky-xdJa_oDgCxJyewDhF8HSWHGNVYR74GuVlEwGABCJ8_2yYZHnM0JUa4K2Vz1AvUmhyBIjJDu6ZKZ8604KenBand05Y4cr8yA8ua8Dw72767wolGPo+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=5596 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:2N7ajsSqZy4Tua7HhPMHsj5i7pjcn9CEVNsxlQGpcGgy--j9DErbOafPRQ5k7BPnQEckm3BE1lHCMLxZuCo8YAot9dsVvfCf3RGyTBCMpqTkXSuo42emCmfhOSj59vEz1YHc7FqPaOVEf5l5csFZFGm4QJWmoKnjtg8DXkEuBwrZf78Q6zv_Lg-QF1MOGf3Pl21WLpAiERF3OD5wljkP77a4X9cE-5OUsErF-03Onmk+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=6264 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:-Ai7Nvhq3DZ9eSh9jG-ttCB5PRDz5AytbTpIT65Axh7jbUOod_JojQam_-jwUPuAiWd7xSeDGS0PBzia_W8AGxyQAzxhTjBNTmbL1DzVOubhk-Ol-Y0ortBpFuECCai7FaWL51v6HDEUtbUrLeA_W6w1Rqi2rsGUbA9R4mp8pE5q8DIwxBOYZDNfxhBNzVSxvEwLrGfUfjSao5LATtJUiz_6TUbsOtXjvjuy6Rqk_xU+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=4284 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=5560 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:kzS-1XZhMhHsGMc1dVxQxelhhdgInTO8CGY6YV6rz8kbehCN95sJplH3mWBoadaiVjhsEwGbK60nQMXJtDLEsSN0yFv_XglvMWjZIqS6htA88PypWeOtiRZI23a-4oQEK1OtnaetaRmMH1lVP_wRv6Fe5zUFAYmrvCoYC-mVenh9NZgY9cGrREqy4__2oFTvRaeV7EoK-YxSHl8M6_-UIRkmtk1tsZMdCWPJece2NsE+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=5792 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=3448 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=5312 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=4716 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6176 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5752 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=4516 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=6632 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=6888 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=6640 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=7120 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4508 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=6428 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:0PHJH5cIjW75B8xEn-TNpiUbOfCsQGOnrM8iKSRpSE8WRIzSyLo0mZesmuMW18jfqUsulEySpJpMWd6FJLwmU_eMaNHk76_pK6NV_9lt6ebZIRhynstBQ5U-jXkV4HcD_Qtd5ihh-SEdJ9U733iB0pYV0gZGDyhnq0CUxJv-VQwVh3B2sxzcIucCq3X2osx6uY_V7sChx2615piUOXxDzioCKTUIFCPNfjjQfsLddYg+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1964 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:2
C:\Windows\system32\dwm.exe
"dwm.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7092 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=7068 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:atFPVGlarcaXbpjtebvAp7XI0z9nU2ZcCRiAB29XGahepZRAPA4IAyqZmPUh2Cw2Dzm9D4w1c_bb2cAVdxuXiW9PHHkbijNdDjDGlOhYWiCcLBXlcOQdiOQ8RJGFa4jb5Vg4kXAelh9vnanwRTmf5dE-QcTdXD-G3Xflz8iiD8DSQXY9JfHWj3pg606cSUfPq7L83JRlG52NvVkYO1ywiXK4zuTCaIIX8jbHiu8Ur0Y+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=4408 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:xUjDt9pxI5Y85Q9KF3I0XMtXVT7aMXMUbw_Dih2nshAlfDK26kXhAcuO2zDMKE6BoX9JIah9bSOnfbmTD6pQj2pTgpWLMhJ2gko45fsQwCXkry_OIX2bC4tTUnzgFuLgqbg0bhK2VvnrnRwWXlURO549n5mR9iRuHQmA21ewYqGfzlixsOyZEU4qavp6tgNpvp3G0rxMkMM_AeIqYfKPDWtSL7oeKnMY8b0d0sHGUN0+launchtime:1714393575857+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D6356806222%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D19586dc8-271d-4d9a-a0c2-47909f2bdbf0%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C77526E2-212B-4370-AA85-62A43E6FF4ED}\BGAUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C77526E2-212B-4370-AA85-62A43E6FF4ED}\BGAUpdate.exe" --edgeupdate-client --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NDI2Rjg2QjktRkI3MC00M0ZELUI3QjQtRkMwRUE3QjE5RDY0fSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntGQkUzOUZEQi1FRkY4LTQ2MjktODYxMi05QUI2MTU2NjVBM0R9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7MUZBQjhDRkUtOTg2MC00MTVDLUE2Q0EtQUE3RDEyMDIxOTQwfSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMi4wLjAuMzQiIGxhbmc9IiIgYnJhbmQ9IkVVRkkiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSIgaW5zdGFsbGFnZT0iLTEiIGluc3RhbGxkYXRlPSItMSI-PHVwZGF0ZWNoZWNrLz48ZXZlbnQgZXZlbnR0eXBlPSI5IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMDU2ODc0NDAwNSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEwNTY5NTI0MDUzIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMSIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTA5MTc3NDc3ODQiIHNvdXJjZV91cmxfaW5kZXg9IjAiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiIGRvd25sb2FkZXI9ImJpdHMiIHVybD0iaHR0cDovL21zZWRnZS5iLnRsdS5kbC5kZWxpdmVyeS5tcC5taWNyb3NvZnQuY29tL2ZpbGVzdHJlYW1pbmdzZXJ2aWNlL2ZpbGVzLzVmMTk1NjEyLTM4NGEtNDhlYS04NDA4LWI0ZWRlOWRjNTZiYj9QMT0xNzE0OTk4Mzc0JmFtcDtQMj00MDQmYW1wO1AzPTImYW1wO1A0PW5uUVVzM2w5QnJLenQlMmJvQWtFYVJRdkNsSllqWTVHWU50U0VMUDR0alBhUjh3Z1JmdDNWN2g2dGJqM0djbDNMMGxIbldreEJOU0RtT3NOV0d2YkdRZnclM2QlM2QiIHNlcnZlcl9pcF9oaW50PSIiIGNkbl9jaWQ9Ii0xIiBjZG5fY2NjPSIiIGNkbl9tc2VkZ2VfcmVmPSIiIGNkbl9henVyZV9yZWZfb3JpZ2luX3NoaWVsZD0iIiBjZG5fY2FjaGU9IiIgY2RuX3AzcD0iIiBkb3dubG9hZGVkPSIxODA0NDQ0OCIgdG90YWw9IjE4MDQ0NDQ4IiBkb3dubG9hZF90aW1lX21zPSIyOTc0OCIvPjxldmVudCBldmVudHR5cGU9IjEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEwOTE3NzQ3Nzg0IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A07DD0D6-7F3D-448E-94C6-43EBF5D78B2F}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A07DD0D6-7F3D-448E-94C6-43EBF5D78B2F}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe" /update /sessionid "{E170DE5C-C391-4713-A6DB-74C80C0DD79A}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RTE3MERFNUMtQzM5MS00NzEzLUE2REItNzRDODBDMERENzlBfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9InsxM0RCNTMwOC05QUY0LTQzNjQtQkMzRS0yQUM4RTFFQTg5RTN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMDYxNDMxNTY4IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMDYxNDMxNTY4IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMDcyMjEyODY1IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIiBkb3dubG9hZGVyPSJiaXRzIiB1cmw9Imh0dHA6Ly9tc2VkZ2UuYi50bHUuZGwuZGVsaXZlcnkubXAubWljcm9zb2Z0LmNvbS9maWxlc3RyZWFtaW5nc2VydmljZS9maWxlcy83MmVkODA4Ny1lZTk4LTQyOWMtOTMzMC1jYTNjMTkzZDQxYWY_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
C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{E170DE5C-C391-4713-A6DB-74C80C0DD79A}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNzEuMzkiIG5leHR2ZXJzaW9uPSIxLjMuMTg1LjI5IiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMiIgaW5zdGFsbGRhdGV0aW1lPSIxNzE0MTM0OTMzIj48ZXZlbnQgZXZlbnR0eXBlPSIzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMTA5MTIyMzI4NSIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0iezhBNjlEMzQ1LUQ1NjQtNDYzYy1BRkYxLUE2OUQ5RTUzMEY5Nn0iIHZlcnNpb249IjExMC4wLjU0ODEuMTA0IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSJlbiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIyIiBpbnN0YWxsZGF0ZXRpbWU9IjE3MTQxMzU5NDUiIG9vYmVfaW5zdGFsbF90aW1lPSIxMzM1ODYwODUzMzAwMDAwMDAiPjxldmVudCBldmVudHR5cGU9IjMxIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIyMTE0MzI0IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDUxNTgyNTY4MyIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\MicrosoftEdge_X64_124.0.2478.67.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff6f09088c0,0x7ff6f09088cc,0x7ff6f09088d8
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff6f09088c0,0x7ff6f09088cc,0x7ff6f09088d8
C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level
C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff7b84488c0,0x7ff7b84488cc,0x7ff7b84488d8
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe -k AppReadiness -p -s AppReadiness
C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1903.1152.0_x64__8wekyb3d8bbwe\LocalBridge.exe
"C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1903.1152.0_x64__8wekyb3d8bbwe\LocalBridge.exe" /InvokerPRAID: Microsoft.MicrosoftOfficeHub prelaunch
C:\Windows\system32\wwahost.exe
"C:\Windows\system32\wwahost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.wwa
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7OTVFNTVCMzItQUE5MC00NjY3LUFCODYtRTE4NUQzNzI2MEM1fSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntBMEUwQzk5NC1GRjBFLTQ0QjItQjAyMi1ENDA0NkI2RTdCREF9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7VlBRb1AxRitmcTE1d1J6aDFrUEw0UE1wV2g4T1JNQjVpenZyT0MvY2hqUT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE4NS4yOSIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJJc09uSW50ZXJ2YWxDb21tYW5kc0FsbG93ZWQ9LXRhcmdldF9kZXY7UHJvZHVjdHNUb1JlZ2lzdGVyPSU3QjFGQUI4Q0ZFLTk4NjAtNDE1Qy1BNkNBLUFBN0QxMjAyMTk0MCU3RCIgaW5zdGFsbGFnZT0iMiIgY29ob3J0PSJycmZAMC44NiI-PHVwZGF0ZWNoZWNrLz48cGluZyByZD0iNjMyOCIgcGluZ19mcmVzaG5lc3M9IntENDUwRkU3Ni1DNkVFLTQ5QTAtQjdFRC1FNEI5RDVGNzM3MkN9Ii8-PC9hcHA-PGFwcCBhcHBpZD0iezU2RUIxOEY4LUIwMDgtNENCRC1CNkQyLThDOTdGRTdFOTA2Mn0iIHZlcnNpb249IjkyLjAuOTAyLjY3IiBuZXh0dmVyc2lvbj0iMTI0LjAuMjQ3OC42NyIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJjb25zZW50PWZhbHNlIiBpbnN0YWxsYWdlPSIyIiBpc19waW5uZWRfc3lzdGVtPSJ0cnVlIiBsYXN0X2xhdW5jaF9jb3VudD0iMSIgbGFzdF9sYXVuY2hfdGltZT0iMTMzNTg2MTMzNDMyMTc1NDgwIj48dXBkYXRlY2hlY2svPjxldmVudCBldmVudHR5cGU9IjEyIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDUzMjA3NTcwOSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjEzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDUzMjA3NTcwOSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjE0IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDU1ODgxNTQ3MCIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjE1IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDU3MjA3Njg0MSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjE5Njc1NyIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTQ5ODU3NDkxNTciIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiIHVwZGF0ZV9jaGVja190aW1lX21zPSIxMTQxIiBkb3dubG9hZGVkPSIxNzI3MjM3NjgiIHRvdGFsPSIxNzI3MjM3NjgiIHBhY2thZ2VfY2FjaGVfcmVzdWx0PSIyIiBpbnN0YWxsX3RpbWVfbXM9IjQxMzY3Ii8-PHBpbmcgYWN0aXZlPSIwIiByZD0iNjMyOCIgcGluZ19mcmVzaG5lc3M9Ins1NEYyRkIzQS02RTY5LTRGMDMtOEY4Ri0yQzBDNzVCNUZFMjd9Ii8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjEyNC4wLjI0NzguNjciIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIwIiBpbnN0YWxsZGF0ZT0iNjMyOCIgY29ob3J0PSJycmZAMC4xNiI-PHVwZGF0ZWNoZWNrLz48cGluZyByZD0iNjMyOCIgcGluZ19mcmVzaG5lc3M9IntBREU1QkU4MC1GOTc5LTREMDQtOURDNC1DQzgxQzY5Q0MyNEN9Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 204.79.197.237:443 | g.bing.com | tcp |
| NL | 23.62.61.104:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 17.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.139.73.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 67.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.250.142.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ogs.google.com | udp |
| GB | 172.217.16.238:443 | ogs.google.com | tcp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| US | 8.8.8.8:53 | 3.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| DE | 128.116.44.4:443 | roblox.com | tcp |
| DE | 128.116.44.4:443 | roblox.com | tcp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.78:443 | js.rbxcdn.com | tcp |
| US | 2.18.190.78:443 | js.rbxcdn.com | tcp |
| US | 2.18.190.78:443 | js.rbxcdn.com | tcp |
| US | 2.18.190.78:443 | js.rbxcdn.com | tcp |
| US | 2.18.190.78:443 | js.rbxcdn.com | tcp |
| US | 2.18.190.78:443 | js.rbxcdn.com | tcp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | roblox-api.arkoselabs.com | udp |
| DE | 128.116.44.4:443 | www.roblox.com | udp |
| US | 104.18.33.170:443 | roblox-api.arkoselabs.com | tcp |
| US | 8.8.8.8:53 | 78.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.44.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.33.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | metrics.roblox.com | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| DE | 128.116.44.4:443 | apis.roblox.com | tcp |
| DE | 128.116.44.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| US | 8.8.8.8:53 | locale.roblox.com | udp |
| US | 2.18.190.82:443 | apis.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| US | 104.18.33.170:443 | roblox-api.arkoselabs.com | udp |
| US | 2.18.190.134:443 | static.rbxcdn.com | tcp |
| US | 2.18.190.137:443 | images.rbxcdn.com | tcp |
| US | 2.18.190.137:443 | images.rbxcdn.com | tcp |
| US | 2.18.190.137:443 | images.rbxcdn.com | tcp |
| US | 2.18.190.137:443 | images.rbxcdn.com | tcp |
| US | 2.18.190.137:443 | images.rbxcdn.com | tcp |
| US | 2.18.190.137:443 | images.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| DE | 128.116.44.4:443 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 142.250.200.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 82.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| DE | 128.116.123.3:443 | ecsv2.roblox.com | tcp |
| DE | 128.116.123.3:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | 10.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.123.116.128.in-addr.arpa | udp |
| DE | 128.116.123.3:443 | ecsv2.roblox.com | udp |
| US | 8.8.8.8:53 | assetgame.roblox.com | udp |
| DE | 128.116.44.4:443 | assetgame.roblox.com | udp |
| US | 8.8.8.8:53 | ncs.roblox.com | udp |
| US | 104.18.33.170:443 | roblox-api.arkoselabs.com | udp |
| GB | 142.250.200.10:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| GB | 23.73.139.26:443 | tr.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | realtime-signalr.roblox.com | udp |
| US | 8.8.8.8:53 | lms.roblox.com | udp |
| GB | 23.73.139.26:443 | tr.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | thumbnails.roblox.com | udp |
| US | 8.8.8.8:53 | accountsettings.roblox.com | udp |
| US | 8.8.8.8:53 | chat.roblox.com | udp |
| US | 8.8.8.8:53 | contacts.roblox.com | udp |
| US | 8.8.8.8:53 | notifications.roblox.com | udp |
| US | 8.8.8.8:53 | economy.roblox.com | udp |
| US | 8.8.8.8:53 | friends.roblox.com | udp |
| US | 8.8.8.8:53 | privatemessages.roblox.com | udp |
| US | 8.8.8.8:53 | trades.roblox.com | udp |
| US | 8.8.8.8:53 | aws-us-east-1a-lms.rbx.com | udp |
| US | 8.8.8.8:53 | syd1-128-116-51-3.roblox.com | udp |
| US | 8.8.8.8:53 | bom1-128-116-104-4.roblox.com | udp |
| US | 8.8.8.8:53 | aws-eu-central-1b-lms.rbx.com | udp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | c0cfly.rbxcdn.com | udp |
| US | 8.8.8.8:53 | ord2-128-116-101-3.roblox.com | udp |
| US | 8.8.8.8:53 | c0ak.rbxcdn.com | udp |
| US | 8.8.8.8:53 | c0aws.rbxcdn.com | udp |
| US | 8.8.8.8:53 | aws-us-west-1a-lms.rbx.com | udp |
| US | 3.214.68.59:443 | aws-us-east-1a-lms.rbx.com | tcp |
| IN | 128.116.104.4:443 | bom1-128-116-104-4.roblox.com | tcp |
| NL | 108.156.60.42:443 | c0aws.rbxcdn.com | tcp |
| US | 205.234.175.102:443 | c0cfly.rbxcdn.com | tcp |
| US | 2.18.190.142:443 | c0ak.rbxcdn.com | tcp |
| US | 52.9.157.42:443 | aws-us-west-1a-lms.rbx.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| US | 128.116.101.3:443 | ord2-128-116-101-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| DE | 18.192.162.186:443 | aws-eu-central-1b-lms.rbx.com | tcp |
| US | 8.8.8.8:53 | 26.139.73.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.175.234.205.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.60.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.162.192.18.in-addr.arpa | udp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| US | 8.8.8.8:53 | 59.68.214.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.101.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.104.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.157.9.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.120.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.51.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | t3.rbxcdn.com | udp |
| US | 8.8.8.8:53 | presence.roblox.com | udp |
| US | 2.18.190.133:443 | t3.rbxcdn.com | tcp |
| DE | 128.116.44.4:443 | presence.roblox.com | udp |
| DE | 128.116.44.4:443 | presence.roblox.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | gold.roblox.com | udp |
| US | 8.8.8.8:53 | lga2-128-116-32-3.roblox.com | udp |
| US | 8.8.8.8:53 | aws-us-east-1c-lms.rbx.com | udp |
| US | 8.8.8.8:53 | waw1-128-116-124-3.roblox.com | udp |
| US | 8.8.8.8:53 | fra2-128-116-123-3.roblox.com | udp |
| US | 8.8.8.8:53 | aws-us-west-2c-lms.rbx.com | udp |
| US | 8.8.8.8:53 | aws-us-east-1b-lms.rbx.com | udp |
| US | 8.8.8.8:53 | lax2-128-116-116-3.roblox.com | udp |
| US | 128.116.32.3:443 | lga2-128-116-32-3.roblox.com | tcp |
| DE | 128.116.123.3:443 | fra2-128-116-123-3.roblox.com | tcp |
| US | 3.224.12.184:443 | aws-us-east-1c-lms.rbx.com | tcp |
| PL | 128.116.124.3:443 | waw1-128-116-124-3.roblox.com | tcp |
| US | 34.230.168.52:443 | aws-us-east-1b-lms.rbx.com | tcp |
| DE | 128.116.123.3:443 | fra2-128-116-123-3.roblox.com | tcp |
| US | 35.82.238.102:443 | aws-us-west-2c-lms.rbx.com | tcp |
| US | 128.116.116.3:443 | lax2-128-116-116-3.roblox.com | tcp |
| US | 8.8.8.8:53 | 3.32.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.124.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.12.224.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.168.230.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.116.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.238.82.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | games.roblox.com | udp |
| US | 8.8.8.8:53 | voice.roblox.com | udp |
| US | 8.8.8.8:53 | c0ak.rbxcdn.com | udp |
| US | 2.18.190.133:443 | c0ak.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | js.stripe.com | udp |
| NL | 18.239.18.104:443 | js.stripe.com | tcp |
| US | 8.8.8.8:53 | followings.roblox.com | udp |
| US | 8.8.8.8:53 | 104.18.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| US | 8.8.8.8:53 | mia4-128-116-45-3.roblox.com | udp |
| US | 8.8.8.8:53 | c0.rbxcdn.com | udp |
| US | 8.8.8.8:53 | mia2-128-116-127-3.roblox.com | udp |
| US | 8.8.8.8:53 | aws-us-east-2b-lms.rbx.com | udp |
| US | 8.8.8.8:53 | iad4-128-116-102-3.roblox.com | udp |
| US | 8.8.8.8:53 | dfw2-128-116-95-3.roblox.com | udp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| US | 128.116.45.3:443 | mia4-128-116-45-3.roblox.com | tcp |
| US | 128.116.127.3:443 | mia2-128-116-127-3.roblox.com | tcp |
| US | 128.116.102.3:443 | iad4-128-116-102-3.roblox.com | tcp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| US | 3.20.87.127:443 | aws-us-east-2b-lms.rbx.com | tcp |
| US | 8.8.8.8:53 | cs.ns1p.net | udp |
| DE | 52.58.114.95:443 | cs.ns1p.net | tcp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| US | 8.8.8.8:53 | badges.roblox.com | udp |
| US | 8.8.8.8:53 | s.ns1p.net | udp |
| DE | 18.194.96.40:443 | s.ns1p.net | tcp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| US | 8.8.8.8:53 | m.stripe.network | udp |
| US | 151.101.0.176:443 | m.stripe.network | tcp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| US | 8.8.8.8:53 | 3.102.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.127.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.45.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.87.20.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.95.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.50.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.114.58.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.96.194.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | m.stripe.com | udp |
| US | 44.229.164.12:443 | m.stripe.com | tcp |
| US | 8.8.8.8:53 | 176.0.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.164.229.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fra4-128-116-44-3.roblox.com | udp |
| DE | 128.116.44.3:443 | fra4-128-116-44-3.roblox.com | tcp |
| US | 8.8.8.8:53 | b.ns1p.net | udp |
| US | 8.8.8.8:53 | 3.44.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| NL | 18.239.94.12:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 12.94.239.18.in-addr.arpa | udp |
| N/A | 127.0.0.1:60431 | tcp | |
| US | 8.8.8.8:53 | client-telemetry.roblox.com | udp |
| DE | 128.116.123.3:443 | client-telemetry.roblox.com | tcp |
| N/A | 127.0.0.1:60435 | tcp | |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| DE | 128.116.123.3:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| BE | 104.68.69.233:443 | clientsettingscdn.roblox.com | tcp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| US | 2.18.190.72:443 | setup.rbxcdn.com | tcp |
| N/A | 127.0.0.1:60438 | tcp | |
| N/A | 127.0.0.1:60441 | tcp | |
| US | 8.8.8.8:53 | 233.69.68.104.in-addr.arpa | udp |
| US | 2.18.190.72:443 | setup.rbxcdn.com | tcp |
| US | 2.18.190.72:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 72.190.18.2.in-addr.arpa | udp |
| DE | 128.116.44.4:443 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 20.7.47.135:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 135.47.7.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.f.tlu.dl.delivery.mp.microsoft.com | udp |
| GB | 23.73.139.35:80 | msedge.f.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 35.139.73.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| GB | 172.217.16.238:443 | consent.google.com | tcp |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | 46.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | encrypted-tbn1.gstatic.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn2.gstatic.com | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| GB | 142.250.178.14:443 | encrypted-tbn2.gstatic.com | tcp |
| GB | 142.250.187.227:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 172.217.16.234:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.bitcoin.com | udp |
| US | 104.18.0.118:443 | www.bitcoin.com | tcp |
| US | 104.18.0.118:443 | www.bitcoin.com | tcp |
| US | 104.18.0.118:443 | www.bitcoin.com | udp |
| US | 8.8.8.8:53 | trackcmp.net | udp |
| US | 8.8.8.8:53 | s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | api.opmnstr.com | udp |
| US | 54.231.228.224:443 | s3.amazonaws.com | tcp |
| US | 104.18.34.214:443 | trackcmp.net | tcp |
| US | 104.18.0.118:443 | www.bitcoin.com | udp |
| US | 8.8.8.8:53 | api.pulse.btctest.net | udp |
| US | 8.8.8.8:53 | coin-api.bitcoin.com | udp |
| US | 172.66.41.6:443 | api.opmnstr.com | tcp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| GB | 216.58.201.106:443 | ajax.googleapis.com | tcp |
| JP | 35.74.178.216:443 | coin-api.bitcoin.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| NL | 173.194.69.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | platform.illow.io | udp |
| NL | 18.239.50.102:443 | platform.illow.io | tcp |
| US | 8.8.8.8:53 | 118.0.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.41.66.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.34.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 224.228.231.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.69.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.50.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| BE | 64.233.167.154:443 | stats.g.doubleclick.net | tcp |
| NL | 18.239.50.102:443 | platform.illow.io | tcp |
| US | 8.8.8.8:53 | api.platform.illow.io | udp |
| DE | 52.28.151.50:443 | api.platform.illow.io | tcp |
| DE | 52.28.151.50:443 | api.platform.illow.io | tcp |
| DE | 52.28.151.50:443 | api.platform.illow.io | tcp |
| US | 8.8.8.8:53 | branch.wallet.bitcoin.com | udp |
| US | 8.8.8.8:53 | web.stytch.com | udp |
| US | 44.241.18.200:443 | web.stytch.com | tcp |
| US | 13.57.99.34:443 | branch.wallet.bitcoin.com | tcp |
| US | 8.8.8.8:53 | 216.178.74.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.167.233.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.151.28.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.18.241.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.99.57.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api2.amplitude.com | udp |
| US | 34.209.159.134:443 | api2.amplitude.com | tcp |
| US | 34.209.159.134:443 | api2.amplitude.com | tcp |
| US | 8.8.8.8:53 | 134.159.209.34.in-addr.arpa | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | udp |
| GB | 142.250.200.3:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| GB | 142.250.200.3:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons3.gvt2.com | tcp |
| GB | 172.217.169.67:443 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | e2c51.gcp.gvt2.com | udp |
| US | 35.212.207.78:443 | e2c51.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 78.207.212.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 192.178.48.227:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | 227.48.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| DE | 128.116.123.4:443 | apis.roblox.com | udp |
| US | 8.8.8.8:53 | 4.123.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | aws-us-east-1c-lms.rbx.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 34.198.204.165:443 | aws-us-east-1c-lms.rbx.com | tcp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 2.18.190.134:443 | css.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | c0.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 2.18.190.133:443 | c0.rbxcdn.com | tcp |
| US | 205.234.175.102:443 | static.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | c0ak.rbxcdn.com | udp |
| US | 8.8.8.8:53 | c0aws.rbxcdn.com | udp |
| NL | 18.65.39.25:443 | js.rbxcdn.com | tcp |
| US | 2.18.190.133:443 | c0ak.rbxcdn.com | tcp |
| NL | 108.156.60.42:443 | c0aws.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 165.204.198.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.39.65.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | atl1-128-116-99-3.roblox.com | udp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| US | 8.8.8.8:53 | dfw2-128-116-95-3.roblox.com | udp |
| IN | 128.116.104.4:443 | bom1-128-116-104-4.roblox.com | tcp |
| PL | 128.116.124.3:443 | waw1-128-116-124-3.roblox.com | tcp |
| US | 8.8.8.8:53 | lax4-128-116-63-3.roblox.com | udp |
| US | 128.116.102.3:443 | iad4-128-116-102-3.roblox.com | tcp |
| US | 8.8.8.8:53 | ams2-128-116-21-3.roblox.com | udp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| US | 128.116.99.3:443 | atl1-128-116-99-3.roblox.com | tcp |
| US | 128.116.63.3:443 | lax4-128-116-63-3.roblox.com | tcp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| NL | 128.116.21.3:443 | ams2-128-116-21-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| US | 128.116.63.3:443 | lax4-128-116-63-3.roblox.com | tcp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 13.67.191.143:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | 3.21.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.99.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.63.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| GB | 23.73.139.17:443 | tr.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | voice.roblox.com | udp |
| US | 8.8.8.8:53 | t2.rbxcdn.com | udp |
| NL | 18.239.83.9:443 | t2.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 143.191.67.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.139.73.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.83.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| GB | 23.73.139.83:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 83.139.73.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ncs.roblox.com | udp |
| DE | 128.116.123.4:443 | ncs.roblox.com | udp |
| GB | 142.250.200.3:443 | beacons.gcp.gvt2.com | udp |
| US | 13.67.191.143:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| DE | 128.116.123.4:443 | ncs.roblox.com | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| GB | 142.250.200.3:443 | beacons2.gvt2.com | udp |
| US | 8.8.8.8:53 | presence.roblox.com | udp |
| DE | 128.116.123.4:443 | presence.roblox.com | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 20.114.58.89:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 89.58.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.249.30.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.office.com | udp |
| US | 13.107.9.156:443 | www.office.com | tcp |
| US | 8.8.8.8:53 | res.cdn.office.net | udp |
| NL | 23.73.0.190:443 | res.cdn.office.net | tcp |
| NL | 23.73.0.190:443 | res.cdn.office.net | tcp |
| NL | 23.73.0.190:443 | res.cdn.office.net | tcp |
| NL | 23.73.0.190:443 | res.cdn.office.net | tcp |
| NL | 23.73.0.190:443 | res.cdn.office.net | tcp |
| NL | 23.73.0.190:443 | res.cdn.office.net | tcp |
| US | 8.8.8.8:53 | nav.smartscreen.microsoft.com | udp |
| GB | 20.162.145.158:443 | nav.smartscreen.microsoft.com | tcp |
| GB | 20.162.145.158:443 | nav.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | smartscreen.microsoft.com | udp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | 156.9.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.143.182.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 190.0.73.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.145.162.20.in-addr.arpa | udp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| GB | 20.58.112.186:443 | smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | 186.112.58.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | browser.events.data.microsoft.com | udp |
| DE | 51.116.246.106:443 | browser.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 106.246.116.51.in-addr.arpa | udp |
Files
\??\pipe\crashpad_2032_ZISRTLXWNOUIZPTM
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | caacf89c1e205ecba011de4253942bf2 |
| SHA1 | 0f248ffcc1f8dea824163ba4bbb2b4ca1b962b7e |
| SHA256 | 338411e9b94189e32476dd2114e3899182b8eb371518de73aab24ed76d01d361 |
| SHA512 | 360437083f1f9336ad4eb688cada9c74d82e2805543184ad7508bfd70e869333a3a13f7e2c17128af9e03a8f6002d2f28cf83ac50636cb6fbf728e2a492f0669 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a8317ec39e4e6e53a978480983f51129 |
| SHA1 | 51d463ffea335b92666b4d8aee2c595fc1a0df86 |
| SHA256 | bf22d01fad93487999248644f8d3bd6307f63b718c5a155dc02ce3cd4e727c95 |
| SHA512 | 0cf4fb3a667a16fc934a0372be8192160de8984747ef4c236c44c4dfacba3956740c5d378fd3ff7494c3c2e1d3910eef1bcf3acf0146c39fcf9c7b17e230c911 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9891bad9adb5483f9609ed1701972403 |
| SHA1 | edcaee604864a38841127c90e7ea3b4d5584daf3 |
| SHA256 | c084227e30770b1c71d0ba1a6ae8ac6b814ea28776e44f6c9ea5a470a1503a62 |
| SHA512 | b21a826a97367efc6bed8b619b54ae5632fd90627083f5444cafa1b7c855998bc587fedaf082b8d34a17fb74b335ef4725785c81bccfed30f03ece5f4858b46a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | c83cd4ea330ab7a908ec372350cdcb6d |
| SHA1 | 6585e9888f0f04f01d1433f6ea8608d93a6f321f |
| SHA256 | c94b367787d2d973dc5be87d3679b4ca3a4b2a9dd988d4c7a89c0c7d8d924213 |
| SHA512 | 92ba3ae72b0728f2a910fec80c6aa8d8dccad161d50e7626e26c24d8cf70779bb6b8acfa7a6b4b3ce7ad49a0a856dae842a044916fc7316e243dfdbb3f6012d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 86649a3468cf2e2229b8464629bf0f33 |
| SHA1 | 64deafc469a4ddacd57642a31f5d489a048b2b97 |
| SHA256 | d8d913dd300a7bb8bff731340f2becc608959c1162e472cef89371c69056a0fc |
| SHA512 | cbbe6ac27f1417965dba899cc91931ff731823405d99bc62c1490cd99270fb00c28f49192ea5ce6593ec1747d4701097de3d3fa15b9d630c4cd56cc3edd2af3d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | cea980128c053c490d65f38f925f2f28 |
| SHA1 | bfd1f8a33dc76844329ebcd486ece65e37c20df9 |
| SHA256 | 9af654132027720e4b322594fb9a2bc00c90406cc2394edc0023a410ccb3eced |
| SHA512 | 804032d0ece38ec265d3bcb343cda95fd8cd708689d2dbc014c66fb3e8a11d3aa79cdae029c7bea7800d23cdd24d174aefe145e2f57ac4fc988a7e1fe9f7c73e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6589b6d93e7868b14cea3797fefd816f |
| SHA1 | 57d3155a214097db287ace323783cc091b419324 |
| SHA256 | 22ac7d673db56766259651de6e84d49ee36d297db0e1d3084e51f0c585cbb932 |
| SHA512 | 93cf4535a7198690e4db2ba42874b1611733622e3141a9bc35f51cc2855597833db811cd60e544fb17dbca2601ed763a69116b9d0bd33ee8c4b9993ea44c4b99 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 0cf5efc95be54fa43e39797ae804524f |
| SHA1 | a39c1807b137b8ea73dff9b89688995dd2166bd7 |
| SHA256 | 50fae18c02d58d844d50947378cde8f15d0d0536c4f9cfabc718303f5565dbbb |
| SHA512 | 2eab4ede4aaa2ba9d3fa75c393298115d1033abd6e116c413e3d2c04f0cc4effeaf66c5bd884a4dcb5111ec2c11a279219953f9654d66cedc099228a04ae2773 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 72887a52d73d5fcabf8c1deeadf1fc60 |
| SHA1 | ab42eeef2ba8596e510b758adb7011be19b7990a |
| SHA256 | 7bdde9b5c4df46e595c168aa717ae092d7c310b6fc44bfa817f872c5b8747b92 |
| SHA512 | 9691755b718a4f9bab7c0721052de9c8280d5d71f48faa2f301059aabe6183264b2a359abb97c3dd897a4f0189edf2c9aabcf909789ee4e076869057842fb232 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 93c689574f8eb398b8c19a6957a5fccb |
| SHA1 | 57aebfe08fd2ef9b16d5d4bf352fe2b38dd1178e |
| SHA256 | df759db80049ceaab19878f29481644de6142a3e7efb116ee7808a7c0f230a94 |
| SHA512 | b73ffc18126691b35fb7fe065d401422224eb2f537c52b815c6f8dbe02ce8b6fce2a7f8ce3be0d7d46b7dc59dacf8b9431a12dc783c5a59b4e81fd45cf85f6f6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6d767622c1d609226cca72d0bccaec2d |
| SHA1 | 6587049d22ba824e6b408e2c2145fdeb6a8349b4 |
| SHA256 | e77bc2753d61c7684a08469b92913710f4182577685616b9fe4a07c02ecf4f31 |
| SHA512 | a6d3dbf394ec2087029d879539fe8beb32d27da798075898c5311f6121bb5f861486ef59154f7168eacfe1254dc8c7e469d7295da294414d11a2e37e764b18d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000044
| MD5 | 588ee33c26fe83cb97ca65e3c66b2e87 |
| SHA1 | 842429b803132c3e7827af42fe4dc7a66e736b37 |
| SHA256 | bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760 |
| SHA512 | 6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5a0205.TMP
| MD5 | 77377c117fc770914da1e44f983e469b |
| SHA1 | 7aa4ce3f05431a213a0c4b13a77da01f6e08ee8d |
| SHA256 | 7d348554039488fe4afaab29ecf2f8b79b62f671cf42eb61d0042d70a1d1a8b3 |
| SHA512 | b449a3e37c932288d0da31c5266b439b183d0bc3c102dc21904afefa990684d4b50dc7fbe04130b1023c5cc119a26b0257285f51e600fd6e2329220a2147b036 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\c6e51f56-0a3d-45e1-9e2b-f8646c246d40.tmp
| MD5 | da58605a7e3adc7205fe94b3937980fe |
| SHA1 | fe7f33fb558e7cc525311fc20cf52dda96114fa5 |
| SHA256 | fd5990260e0ddd35cc49e43ec75590290b1c92e73c190bf33e3cb86a7bff483d |
| SHA512 | ae02daba67e4d3ddb98c70a1bd2b19ce143eddf912c1983f712d7f537a5513df3ff83ced9c91687c5349a0ca4e7a8c09583171e6ebd98c688a81d38ca0291b0d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3e238d7eaf6ab7e9545adbabd05b2f63 |
| SHA1 | fe9c2d5b31f0daba94912700040935eff68f8fdd |
| SHA256 | 7f9a501efaa9943240ec2354ba654626255f81b99fbca46505cd18f1281009a1 |
| SHA512 | 3b7f071081b8c29f48d5f93e2c0f19a884273e926cd248bb6de6a0dc1adbddf3611bede6858233b92b5be2e43a77198fcbfdbe66c5c6aa5ffd3b98f02e1eed43 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dcb4b4a8872bad2057f1f599506b128f |
| SHA1 | 9680b693b0915b1fda5e36f3c7944955e78272db |
| SHA256 | b5449c15e8dedba5caae7f485d7b37a381d4f29eb02b6468f35267fef05a9c8e |
| SHA512 | ae45a5b732aed785316ebea72a805981b0eff4959b5e0ebf729579255858e2b0f57999dced2df59ac35063475a0531732a4b33ddab3b7fe6e0157fd477b03392 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | e80eb1d0c0fd23b464c981b26e791179 |
| SHA1 | f8ac7ede72d4eab89187ec49e3f79eef7b2f3990 |
| SHA256 | 94a9961ea467e81f122d8efefcb0d3bbe98c1cab866a26cc1457d1dda7ce8fb3 |
| SHA512 | 1ecd5902cd930868d25426fdbee954d75f338eae10e33c8401bb7a37b67120d7eea70d65847275dcc92c2f23e3e3409748fc8e9e69f204ab2fb7b95606837bc7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | babf766cc5939174d2381619b60dadfd |
| SHA1 | 4b83cacfa9b8e0002a1a6ddb5953fb8ae45e69c5 |
| SHA256 | 5d92e554886fd84ead6dabd5a10f2ad56a7948268df2c7604eda10e728dcfc76 |
| SHA512 | cd32a3907532c6a6d5fb80d21b9a34c19056209a592d7175b229fc77961c7bc318d1e1fa4d1befb8a36c6efb1126cbc7173bb39ab43a605b623a1f4e3f44f6ca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2ef73602134809d22e2ebe29d4a76cd5 |
| SHA1 | 9b0798f4c926aee7169b20f7afcda9ec843a6b36 |
| SHA256 | 85a8f492927e89705217facdd00bb794aa00cf90e063710609dccd8c76c0d482 |
| SHA512 | 23652b51b9d6fc913a71b285722b30719a60bcdbaf479a3833dada6889a6e1e4c7a41dc954803b576cce8ae45af4c61564fc35e47ae8bbb8b282696bb6825b61 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ae86ca861a8f37193a8a2b190b5fc0b9 |
| SHA1 | 626ca74f0eca0860780de6409c19080ac66efb9e |
| SHA256 | c6fc4f4b4e814acb6ca0903bf83568d39593bd37e75d12a0a7ebfbaaeb9f5088 |
| SHA512 | 92d77d2516f8d04dee4eec01a47c32c7e8c236c5634b183f324a0d5ba43f7fec3db4c9417a3ee7b23e20d0ca8278f783f153bafd5b6cdf176d630be485999347 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 81e1a8473cfb1b3cb1d5d8c1f20f292d |
| SHA1 | 639b9977651f568c40249d18fa20a2606bb325cc |
| SHA256 | 5d33125dd012d26ecdb96a4d89485dc6d2409dd17086368ae49e3d7e94652fa9 |
| SHA512 | 4a07d429c9adb2dffb50a1f76eabcbd06723996689e24f6cf11a04deaf438d49952ae555e05e83c36a5d599c47faba9f5596d777022b9a562b5c8ef2c32fd599 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dbdcfc149e5dd02d76ea4e2c7f9a7a14 |
| SHA1 | 65b060fe9fbf878180c73b8d9c17a9b11c3dac08 |
| SHA256 | 11024ecbe89862e1df6d061e5305f11dd806327a0d725ff1974be9cb997e84d4 |
| SHA512 | f2b4fa5cb4dd139fe872ce6720c459aaaac8bf89730385e6c393c4df7049c0634d6c70ba1eb090c7ef5c049cfae26b26b7800ba8f6cd48b1ce5742067419612a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 5ae6d86b2901663773c0598deb502a29 |
| SHA1 | 2f2b352f7fe5186a08b7fd55d60bfdb5b16317ea |
| SHA256 | 1f0ff9e9de6b1943569244086f1f23a111136d6869f772d4e3d9cd41aa42b3d7 |
| SHA512 | 457b1fa8a0c191b2f688ec8e9cb471f8e195b180a8cf774dc9428df8767b89664707eb9428b2e4ef117a71e2bccd427557e0cc19f00855442de331edef80bd00 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old
| MD5 | 5280803eead8244a61089b166a4eda2a |
| SHA1 | 3b67aedfbbfe4db671caa759fa98719f49f54c11 |
| SHA256 | 87bad47b09e035643b58cfb8df338875f1327f19e8b7448b5a265501172352bf |
| SHA512 | aa0179f27717e2dc6eabe8c56f101977c2f3b0afabf94f2ca9854c785d34d6d6691f251784a2e1f3bd9f57eaa83de32dade4f357abd4840aa3efd10eaded3a55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old~RFe5aceda.TMP
| MD5 | 39deab81691938aba13a6b1c1ff05eef |
| SHA1 | b1d6b9be604c86dc41f6ffac089aac1e3771bb13 |
| SHA256 | 8c56c6d0e85f35c6cfcf2995c17f2fdd57de95d92bb82bb910284c8c20bec0bf |
| SHA512 | cb7d8b403bbc49b147282d3150654ebc62a71db5f5598b9f9ddb07dc0d6813d1e29ef4b56e5a63a1388d4241c4ef7725762424d32deba6289a1147c822dace37 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b7d4b55f54670ca5c4817e25ee5ce289 |
| SHA1 | 0ef9871eeb248c20232d8bf27f8ff6a4a1efc1e7 |
| SHA256 | b670467862df369978edcde2fe2e9c78228d9e222fe352db09dfbf3adb64ad0b |
| SHA512 | 80455589c0b76bb1256125426bc6f72268e67efd23aaa3cf6cf4e182b90976a7481868d4781da62a90d0d27b02370b7f6bdb7f2e23346f47c5311fc95df0cc5a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old
| MD5 | 73f1f85617544ff40c6ca61aba2477bb |
| SHA1 | dfbbb9d2e5c49ec85481f0ea5f1d0fe5a2e77edf |
| SHA256 | a3f6aa2b2cb7eaff37736002446f8173f45f40e0866900888af0760e991c86be |
| SHA512 | 37354652c9ddfb0d0979fa54ff5851c028767662f9a588f4b8b3654f52cb6b607d1970840e48fcdb137c61b4cb51f32afe9a8565194eae3b70758ce13ed116ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 22b7490413f20d5dc8cf5c6ebc1a58c1 |
| SHA1 | d28edda5d68bab33df51d8095e78526b18199619 |
| SHA256 | a82c4c3329ff713ab67773f040bef7d15398b6f75c09cdd3ede0180d2a14c70d |
| SHA512 | 2a51be7a07ec58ac9b53f37b26d62ae789bb5fb7442dffe05c736de306de672f58e56c9ea0c9fdb61637dac4beb7f6e7116c2f2083d81a28c9e6ab563e3e4967 |
C:\Users\Admin\Downloads\Unconfirmed 996353.crdownload
| MD5 | c52eec089b9dab56e69fa5f4d9350d8e |
| SHA1 | e89b321198835baa1313dcd1b7eb71fc75eac6b7 |
| SHA256 | d1a0d760bf92479e176dbddb70669d9c3bcbcf8743c5601517682ee300a202de |
| SHA512 | 894f3ece52ba0fdb7bf5eb3b4a473df66230be894fc47ba2f5189a06ec5db252f0a215d6062514c5b467cdb498555ef03b2dd26d6a8d76a25e121bff67fb4677 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 36333c9a65c42e183d2c2d5fd7b54810 |
| SHA1 | b49343e1f8e07543cb4a6667d40d5e3684bbcf9d |
| SHA256 | f62f0906e3b17e6899533541d9424398bd011d30800fe3f8968caa11ba261ab5 |
| SHA512 | 8c21af4e1d6ba50e9334988cec1ac1e1fd6e03a04b553873258b1734b3256a02452ea32f4872a3246dc580f9871a390031e5b75ce3015550aebe3e6b88480d7f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e2ec141d5726ae250192f1e78ac01451 |
| SHA1 | 0fa8af0ae56425a826b7efbebbe0bc769aebb6da |
| SHA256 | 03d513ae85681721502bb0fa36ac3e73279d20f6f9be17cfab06a3f679e71146 |
| SHA512 | b57e4eadc399434b46464947bf7a077cda4be5d77a7017d897d910fb92506437cfcfca914093657a870610acb0753acb3cf41f1a763adca4c071cd3806add201 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | b9e001b38ce6ce6ab33c0565bf35f1eb |
| SHA1 | 36849a95782a7f85bc8a127dfd7476fc0d233c32 |
| SHA256 | c6268e95b3476ab4be3d937350da397b585954f2e7cbd356db7fcfcaf266f132 |
| SHA512 | 21abbd567ebb944681c3b72855ea40b5d4c770dd5362fba30e0da2dea20a84557bae5f280cacc27853a03553fe87ad1b36b21a2cf7360c74667b30cd3552b44e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | be6ffbcca48158708f4f875f5910141b |
| SHA1 | efa8195c6fbf83f443e7645afbaa7fdc1d4d69fd |
| SHA256 | 5dc123d65727905666f33c594c5131b0266238f3fb783dd87344f85e22ee195e |
| SHA512 | fba5a39ba7931a18862e48e0b944b4ad7c21239fd57911ff476019c48137736f17e9de0447fc1ab1ccc5de570ff8543f7a0ba69ca0c0f0ec7e4808763c8b247a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 51a18ee7d3a18ba04392394395b3a6eb |
| SHA1 | 90f605bf474f65e498977d9dc0d6bc7f567d9bfc |
| SHA256 | cc2286583713d5a76fca2d5232d257433b61ebe8c5845b121811e710957fdb98 |
| SHA512 | 26d37fd6656dff1554b9017cfcbf4dc7159956d9517b95842693461a8a5fb54e7f11300236a553dc3845b1be190db295d4f698836b26324bf538cf4d77acdfce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 5dfce0d87d514fbd6cab7eff33f46ec2 |
| SHA1 | bd959e0ab199654548644f8836ec05079749564e |
| SHA256 | 4bae8974058aed68ea0739b957070dd5aea27ba1b0e012362c90de1e205cf918 |
| SHA512 | c5b1660876d3bd6a6a325cb91f5973bab2bc5d22ee0cf2655c81c97be4072ce29f5e606ee55c1d4a5c468e2b0827953e64b1f112e2201399092be9bb9a449d8f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e06e4d908165a5e850078f1576a6f804 |
| SHA1 | ed8be1706c73aa906d55020b75cac13e2a4c2d60 |
| SHA256 | cb2be9a3c85d320b8c2dcd1d40ce4def9f5c16977f5d5098e304adc179f81d40 |
| SHA512 | e30227e4aeb5065c325b3e3ce3b24e096a37d751a0cc0f9957fa3edddf074a5920f9cb7c6e2f13825e1e98d594ac56c52ea2cba301f9e8bcf55d8ca607cfe400 |
C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe
| MD5 | 911c020a364b10fe1de664c01de4534c |
| SHA1 | 8731aee51722d2e1604864eb8f03abe3e6d35441 |
| SHA256 | cb84418aa6ff71e927125f05cd74b10cef07b40fe19a17f9ba5c3bd57f2d9591 |
| SHA512 | 7e2c2259dde1fcb1a10a3864b1e24f892fb28d1c0a9a8b1b32d6b512d9f49b031cf6119f55dad008f0b2a5dc87ae606ee0c2918fdc44fc307d56bc933537db7b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 373f403c502dc290173804e1ecd213ed |
| SHA1 | 80dbd6e51741f37d0d7a0b0c5014842e53f3cdd1 |
| SHA256 | 2777fdbb801cbee5e7286b83a6e336e4d8a2c6c580c02303cca849992f175ade |
| SHA512 | 7a4e9a0af5fadf2b1ea90bd4e5314c6b3162d5abe20a7cc4d80ff6cf75a379972bcc863d0fd69d0302216356a3ba8a65c35a48b57e73c6102b028153839bef84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 6cfaa66bd88c41a887fbcd1c8a7fda50 |
| SHA1 | 80a696e82c16d014c55129828cf8b62eb5c725c4 |
| SHA256 | bc546c9776ab0fe1abcc795a3a7cfd0092cd8019b544604d947d089421fe97e0 |
| SHA512 | 727808ddc70092cce52e48e0aca4b5f8bf94c895ca334425141b979b6a3a4b52387a92e0633da262c10cc7fa40efabe33041bdcb0b81330bc6ede575b407ce34 |
C:\Users\Admin\AppData\Local\Roblox\Downloads\roblox-player\ff6b65de0e41d5bcb3b4ba09a6990c0f
| MD5 | ff6b65de0e41d5bcb3b4ba09a6990c0f |
| SHA1 | f962a1e4ec9c7d2ec4625be854fcb505e0be4427 |
| SHA256 | 41f6a727a284fc75e82310a6c7ddb1b609c89cefccf3a25196623d4f9c524e36 |
| SHA512 | d6f6d8d62ec74d6b3800480152b98d66d78d5c528e305064bf1347bbc18177c2708a626cf7969377e9abc6a4e018ecaba046b3042419001bcc239ad263c0d435 |
C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
| MD5 | 610b1b60dc8729bad759c92f82ee2804 |
| SHA1 | 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552 |
| SHA256 | 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08 |
| SHA512 | 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe
| MD5 | 4dc57ab56e37cd05e81f0d8aaafc5179 |
| SHA1 | 494a90728d7680f979b0ad87f09b5b58f16d1cd5 |
| SHA256 | 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718 |
| SHA512 | 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdate.dll
| MD5 | 965b3af7886e7bf6584488658c050ca2 |
| SHA1 | 72daabdde7cd500c483d0eeecb1bd19708f8e4a5 |
| SHA256 | d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19 |
| SHA512 | 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_en.dll
| MD5 | 4a1e3cf488e998ef4d22ac25ccc520a5 |
| SHA1 | dc568a6e3c9465474ef0d761581c733b3371b1cd |
| SHA256 | 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011 |
| SHA512 | ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdateCore.exe
| MD5 | c044dcfa4d518df8fc9d4a161d49cece |
| SHA1 | 91bd4e933b22c010454fd6d3e3b042ab6e8b2149 |
| SHA256 | 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2 |
| SHA512 | f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\NOTICE.TXT
| MD5 | 6dd5bf0743f2366a0bdd37e302783bcd |
| SHA1 | e5ff6e044c40c02b1fc78304804fe1f993fed2e6 |
| SHA256 | 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5 |
| SHA512 | f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeComRegisterShellARM64.exe
| MD5 | 7a160c6016922713345454265807f08d |
| SHA1 | e36ee184edd449252eb2dfd3016d5b0d2edad3c6 |
| SHA256 | 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9 |
| SHA512 | c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_am.dll
| MD5 | f6c1324070b6c4e2a8f8921652bfbdfa |
| SHA1 | 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf |
| SHA256 | 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717 |
| SHA512 | 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_bg.dll
| MD5 | 8375b1b756b2a74a12def575351e6bbd |
| SHA1 | 802ec096425dc1cab723d4cf2fd1a868315d3727 |
| SHA256 | a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105 |
| SHA512 | aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_bn-IN.dll
| MD5 | a94cf5e8b1708a43393263a33e739edd |
| SHA1 | 1068868bdc271a52aaae6f749028ed3170b09cce |
| SHA256 | 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c |
| SHA512 | 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_bn.dll
| MD5 | 7dc58c4e27eaf84ae9984cff2cc16235 |
| SHA1 | 3f53499ddc487658932a8c2bcf562ba32afd3bda |
| SHA256 | e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98 |
| SHA512 | bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_az.dll
| MD5 | 7937c407ebe21170daf0975779f1aa49 |
| SHA1 | 4c2a40e76209abd2492dfaaf65ef24de72291346 |
| SHA256 | 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9 |
| SHA512 | 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_as.dll
| MD5 | a8d3210e34bf6f63a35590245c16bc1b |
| SHA1 | f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693 |
| SHA256 | 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766 |
| SHA512 | 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_ar.dll
| MD5 | 570efe7aa117a1f98c7a682f8112cb6d |
| SHA1 | 536e7c49e24e9aa068a021a8f258e3e4e69fa64f |
| SHA256 | e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01 |
| SHA512 | 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_af.dll
| MD5 | 567aec2d42d02675eb515bbd852be7db |
| SHA1 | 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37 |
| SHA256 | a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c |
| SHA512 | 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\EdgeUpdate.dat
| MD5 | 369bbc37cff290adb8963dc5e518b9b8 |
| SHA1 | de0ef569f7ef55032e4b18d3a03542cc2bbac191 |
| SHA256 | 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3 |
| SHA512 | 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1 |
C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe
| MD5 | 60dba9b06b56e58f5aea1a4149c743d2 |
| SHA1 | a7e456acf64dd99ca30259cf45b88cf2515a69b3 |
| SHA256 | 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112 |
| SHA512 | e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7 |
C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log
| MD5 | af0a577562cf648ee314533479660e57 |
| SHA1 | 82ca3360b5796278cc9a8b1b08f45710d642bc4d |
| SHA256 | cf0e94fb176507662d01939fadc76809e41f01d6c69a9fa5bc228424c15dd1cf |
| SHA512 | 7a3fbdf857cfdcb876742897622b96582b8cb334534c0be94af79c61e38aef698eae66c3698b765a54134696a46c0a490674cebe6c5545c2bff63c7eeff64f32 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2e7dbfa96a6fa2a97c795e4ee311b4cc |
| SHA1 | 75916bc58f59d0f946e3963ea7fc634a6b99b6c3 |
| SHA256 | 0e180790c30022ded09b7c4cd8d0a51c24ac23f0083db3dce262123c00da6d2d |
| SHA512 | b98ec2d78371a1d2fd509f4dc46d7a48333a8808cfac873a84e2444838fd3f7107f945e4b52f7a470c7c624100296a44661cdd0657c000774b987683e8d1d8dc |
memory/4580-1493-0x0000000073580000-0x0000000073790000-memory.dmp
memory/4580-1492-0x00000000005E0000-0x0000000000615000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3760cc227b5045b91e89ca6d9bc294b9 |
| SHA1 | f1622ddbd048cc73260ab5adb32bf9af047fe87c |
| SHA256 | afc703cd9b7da8ec86c807490483d81504dc7db790fcdfbc243affd4cb5c3b1b |
| SHA512 | a16ef17372a811588c463db1c2f48b92b9f01d2558652767428c0eb266c0d80ed6a028f965d8344956d8af656717278176f4c0491af5611e9166755324324030 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}\124.0.2478.67\MicrosoftEdge_X64_124.0.2478.67.exe
| MD5 | dabc3160a804b9fadd89ceb0fcecf388 |
| SHA1 | b52f15e866a18637683bdf0ea4eaa326b787396f |
| SHA256 | 53eb39a92ee0d2eb94f6d33c015097bddd9cfe5c4129d3ac9a9facbfb5087bfe |
| SHA512 | 74fc0f21d7cf99e07c079224e2af8a4a51bff98a97bc471cfedfbd3a28d3ee681fbd63fa7239948c3c0bf4f9af56dc582dd128f8c08b54cb73389e85f949f431 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 83dfc53eedb09e7b2ff1d9c96bb945ae |
| SHA1 | 17ccb6c8491e1d44334ea751726d38b95f0c8be3 |
| SHA256 | bf35f95c79f0822827e543a17066f380cf29df372cc0ebfc70fe1c019d0d46ca |
| SHA512 | 1d9f28d8529bf761204f93f12b8bfcac5c597f02714cc876dc8d4179bbdac3981a3ee594d6953eb1020e6630705a3067a1581c723c2521eb43885973c7ad9c3d |
C:\Program Files\MsEdgeCrashpad\settings.dat
| MD5 | 8f6f92279177f3e7a7ce34315f5cf8f3 |
| SHA1 | 0b351ffee6738568b86d8ae24a7002f491313e9f |
| SHA256 | 75522b95b1176e62db7e37ac774ae66e1b13760138dc9a69a4616816d19aa0a4 |
| SHA512 | 30b94f93a04fe80b5f3365755f7f22ea79b25eed28f0405ad281d9516c4069713c9bc2d302ecf1c14cbaa39be73fa326c694585ac40d51feca6a8ec6ff0b9b7b |
C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Installer\setup.exe
| MD5 | c31297188ec9fbaa60449f769339963e |
| SHA1 | 8502d9e0cef18137529f0a46ad6e69a1577e6cae |
| SHA256 | 2e2eff110475dd3dfd732ab514e4692032e67b2d228d0081634a87f45cde5ff9 |
| SHA512 | 9525e3e08b953fe36270c7b4868959e9bded055c5577e5ca94d79606b671e6660d180f763b54a276bf356e82d7073901c373e0b40cfca924cc4b38384c20e22a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9c80d30c80ed2025f9f23af215c8b00e |
| SHA1 | cf526c57217bb5310f3167641526b9e800fdaee4 |
| SHA256 | f8f28c503c77f0f21c7ae8a2ab04ee769afab977ff42bd0de46232f54187e5e0 |
| SHA512 | 2d28abb6269ae6abd306cec8a94035c134f783283f7d04daaa75136dd3b7c2f72f16bf4344491cb67906ced702760ce2b04f136c8a0e744d51190f277303cd54 |
memory/4580-1563-0x0000000073580000-0x0000000073790000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 491fd644210280d904f41ccc911a17fc |
| SHA1 | c9893d80fe15f52f0368661874aed47e4d0f9cfb |
| SHA256 | e278a92e48098f6ba9a03cff2f98780edab5e8c37d3a87dcd8384e61e58073bf |
| SHA512 | d5e1fa4e5fcabf2918f586087775775bb8c57f2b1d973db4c2dfe4f29798402bdb2e05b4ad2db8efd300e5de51bfc5d2630bf2d3bf46ca2848018e7b2c4f06cc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f5029628414ed5b615569b723b108316 |
| SHA1 | b239f61bbdb37e2f30aa8a8382b51469da94a54b |
| SHA256 | 3101db76ba9545cac77bc5a654cdab5ca3800247d379fadd979c327a7d394071 |
| SHA512 | 6d12198511a5704f8e35159a6dbe9e3929c16437525deb14e240c43f52e4b4558ad63638dd71c996a503dafb5501ff9e469ae596091b7015027195d65a662cda |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c6d1c310f70b2786015a58ed4d4f58d7 |
| SHA1 | cf60c314c073608a6826b8fd1d64939761a27244 |
| SHA256 | c8da6fd8c35983abe961385b552353ef9b183fe52b269e54850246cd36abaedc |
| SHA512 | 1ce62d02c6fa0ee9ce17495196df36521cbeb9b19e7e635057c12d1451c9c04273e7794f407529ce87bfdc97ec9b210c319c010186358737a07b348a042f93b8 |
memory/4580-1602-0x00000000005E0000-0x0000000000615000-memory.dmp
memory/3548-1612-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp
memory/3548-1616-0x00007FF81BAC0000-0x00007FF81BAC5000-memory.dmp
memory/3548-1615-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp
memory/3548-1614-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp
memory/3548-1613-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp
memory/3548-1610-0x00007FF81B9E0000-0x00007FF81B9F0000-memory.dmp
memory/3548-1609-0x00007FF81B9E0000-0x00007FF81B9F0000-memory.dmp
memory/3548-1608-0x00007FF81B8D0000-0x00007FF81B8E0000-memory.dmp
memory/3548-1607-0x00007FF81B8D0000-0x00007FF81B8E0000-memory.dmp
memory/3548-1611-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp
memory/3548-1622-0x00007FF81A940000-0x00007FF81A950000-memory.dmp
memory/3548-1625-0x00007FF81A940000-0x00007FF81A950000-memory.dmp
memory/3548-1624-0x00007FF81A940000-0x00007FF81A950000-memory.dmp
memory/3548-1623-0x00007FF81A940000-0x00007FF81A950000-memory.dmp
memory/3548-1621-0x00007FF81A940000-0x00007FF81A950000-memory.dmp
memory/3548-1620-0x00007FF81A920000-0x00007FF81A930000-memory.dmp
memory/3548-1619-0x00007FF81A920000-0x00007FF81A930000-memory.dmp
memory/3548-1618-0x00007FF81A890000-0x00007FF81A8A0000-memory.dmp
memory/3548-1617-0x00007FF81A890000-0x00007FF81A8A0000-memory.dmp
memory/3548-1630-0x00007FF8198D0000-0x00007FF819900000-memory.dmp
memory/3548-1634-0x00007FF8198D0000-0x00007FF819900000-memory.dmp
memory/3548-1633-0x00007FF8198D0000-0x00007FF819900000-memory.dmp
memory/3548-1632-0x00007FF8198D0000-0x00007FF819900000-memory.dmp
memory/3548-1631-0x00007FF8198D0000-0x00007FF819900000-memory.dmp
memory/3548-1629-0x00007FF819760000-0x00007FF819770000-memory.dmp
memory/3548-1628-0x00007FF819760000-0x00007FF819770000-memory.dmp
memory/3548-1627-0x00007FF819650000-0x00007FF819660000-memory.dmp
memory/3548-1626-0x00007FF819650000-0x00007FF819660000-memory.dmp
memory/3548-1636-0x00007FF81A480000-0x00007FF81A490000-memory.dmp
memory/3548-1641-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp
memory/3548-1648-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp
memory/3548-1655-0x00007FF819170000-0x00007FF819196000-memory.dmp
memory/3548-1654-0x00007FF819170000-0x00007FF819196000-memory.dmp
memory/3548-1653-0x00007FF819170000-0x00007FF819196000-memory.dmp
memory/3548-1652-0x00007FF819140000-0x00007FF819150000-memory.dmp
memory/3548-1651-0x00007FF819140000-0x00007FF819150000-memory.dmp
memory/3548-1650-0x00007FF819040000-0x00007FF819050000-memory.dmp
memory/3548-1649-0x00007FF819040000-0x00007FF819050000-memory.dmp
memory/3548-1647-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp
memory/3548-1646-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp
memory/3548-1645-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp
memory/3548-1643-0x00007FF81A1E0000-0x00007FF81A1F0000-memory.dmp
memory/3548-1642-0x00007FF81A1E0000-0x00007FF81A1F0000-memory.dmp
memory/3548-1640-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp
memory/3548-1639-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp
memory/3548-1638-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp
memory/3548-1637-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp
memory/3548-1644-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp
memory/3548-1635-0x00007FF81A480000-0x00007FF81A490000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6423700a458833133c8fbdfe2f1a0a7c |
| SHA1 | b276d271d379f355a89f36184e7ca20680641540 |
| SHA256 | f6ce499ae89c4d704a3b346d5f4e72186a89aa2b36546e9dd6af7bfe16e4a2fc |
| SHA512 | b68ad236c2284132dd5ccd21dcfb0e373b34fd430cd2a90756897c285e52ed2532788c6ea9af7579234add8542b16db367ed7931564d4b202478cfaf5911c348 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 73e8bc88afc32d5b3bfbbd5ee9aadb6e |
| SHA1 | 1be76a99254db6653ae3a3ebe3d921d094a684ac |
| SHA256 | 267179e836259b54b9217d3dfd52f27ad25d909c172ec49da182da81fc51fe3e |
| SHA512 | ecbaf8d77c24bd4ecdfefcd6e1459f5ee6217f3c711e4199a5e615757bcee69412903f2639a32a33252c9b44794613455323b5cf9dbc20e27592e4b33416f6da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 21409d64a0739f31b00f9b4790547b4c |
| SHA1 | b66422433fc897f2c50741d0ab31f56f70462271 |
| SHA256 | 605f7ffe3f6b89233a1f57dc887e9854b87bd353cbb250e11b0214e686bbb14f |
| SHA512 | d64679d46d6f923f0c2f53951cff5b280fef84c3e1fc741b81e15bc53a6360352ed5acc6fccf8bf7f1465c774eee2fbea8c0d2b661e65f90ff2e09ebd6d32fd8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1d8c5ac9399b6de0b7300e1e72aac209 |
| SHA1 | 5c0355311a44e8edb0a644f684b490a1fac63218 |
| SHA256 | 47e47c7249e4826c094acaf034c9f72e4c4e80e5c2f450a0e1fb1d5a09e45d34 |
| SHA512 | 84edaab78cd4aeb4b039012648fb1c23de9e22118beff329bed019e5443007cc50282fee5080499c62a9114323e1fdae0aba293bcad02a98bb21479ad82da47f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 234a6bfe267a7027d3fc7015afd017b4 |
| SHA1 | 2609e0fb98825118b2faf09565885b341a674cdf |
| SHA256 | d5c026b4780e83c2fb1b42462666294f68d9594d364f4dfef22ff7f82f9670d3 |
| SHA512 | 9f740486abe9c13acceffe9b8ee39331961233dbc4cb4335fae908b664112422540475db6ff242cc22c798742249d3eb4b68df9686428140acb77c52a92e7c0a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 913cc413cb5d20adf944de09a10fd226 |
| SHA1 | c8ad5ae23720527dfc1460450ec268305e61487f |
| SHA256 | 13f92198a0d151f00a03ec8fcfed00cebb7a0bc5e78eafd6ae2300b343e31bcf |
| SHA512 | 4a8c09268b2c38fbf63e75b366c45faffc82049b03094d77f8d94bab62b0390c91a3c3a41d8777bdd09274c7effad31da6576a518163e9dd4c7dc29f132e5d0b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0fdaec4e53956aee616e5eb3c8aef39b |
| SHA1 | 928cfc37214b1383e030d5f18b02dcfb73c82fb7 |
| SHA256 | c8072e6a1c5ac456dfe00be63ac405d1887856da8b922f580b3124c41e102390 |
| SHA512 | 6fce84b948ea9851247baec05584e3b76166d991df5e9b876b5e090357301feaf29912c9f6a1815c44309d4dd92051fcd6e30b4179a888d947886dd75b6055d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | eb720c5a4527c6856df2407d1773a66e |
| SHA1 | 7c63cc9a692653f484e4ffff1e0c714c3b0cd91a |
| SHA256 | 5d2bd8d558c82861069aab9df2e23ff3fe88758f426a56ce86317bfadb1c4192 |
| SHA512 | eb590a7dcd0daad47b203e39b862bd7e7321e6d25fdf3cce27dc15d641a1ebe8184907551466951f9a9ecf6e5d04162faab5eae78daaac9866b40c3c586ce906 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7fdefc2db9c4c405122bc1dd886a581d |
| SHA1 | 8d6a5680f147bdd49edb0e5d6c70547becf3b519 |
| SHA256 | d41261cb786eff932c9d4a2fa3b3295c9f869c5c26dfa94cd3f5c380d339b04f |
| SHA512 | c301f35758eea04c4d8bae8d4234be28a64c51321602a29dd69fdf787053bcba8f1dbd4e591f5cf90537ab0dc2ec8d4de430e4172c9e243d1e5e43a63881ebe9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 425eb608433262fffa008acf36c95a2b |
| SHA1 | c8f23e8b6f938d5bbe474823e269ace3bca6222d |
| SHA256 | bb13f331e04f5765bf1d6a95c89534733503d6b8ae800e4c8437beaf92d08dd5 |
| SHA512 | ef0e2fc740cac3ccd2b2f4e939f476747c2d7c6c3df8eb36afbcb9a234348e13281d7621fd87e3897f290b9ac8063128cf440dee0cb2aa4a8bc2947d78fb2233 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4ca9daf556a388c4cd0f7db53ef50bd9 |
| SHA1 | dbd3a2891544ddabf573e8974784e9a47977acc4 |
| SHA256 | ca9cdf6cd34893fd18a5c23440917ef880c65a844ef332021333379c59c913ca |
| SHA512 | ddaf5c7d7b25314db58fa90f30a1a6176696d8f607639b782af1be2716baf1510909bb944b3feec3faeffcd002f41193eebd6bafd9cc85b4e7856e4c1353270e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1432349d56dee9b252e21ed14fd1b42f |
| SHA1 | c92d4c3eba3b2f99d0646d5f002c6b4ef2917fc9 |
| SHA256 | 20a195520be444bf942be0dd85667e064fe8e8452f3e6dd15c1afbbc1eba4eba |
| SHA512 | 05579510658e8f73a04fd1012e658be37025d189b5766b8d061671cb1ce4fbcc144606ce0b33aefa2e88a3bf4fc48702abf90b379d7f7581e8265534e6677374 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 8a7e5ca5caf42318113143f741b67684 |
| SHA1 | be38ef80435c098d9ce516aa17d0fda19566dc12 |
| SHA256 | ae98b1c0e9cdf76533d57e5e9923ac6a424a6f39010d60920eac75b2bfb65da9 |
| SHA512 | 58b8735505a2ff2e22d222a435fbb7845c5d0133a4f4f134d2c655f5cd1e965d0e732d7a8031d06e2f1fc4e99a02840275cfb011c5e9bfa2c5eb5c52a671a684 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e6132d5c582d50a63863992060a795e9 |
| SHA1 | 530008245213729b23116154a1b7149a32f19447 |
| SHA256 | fdfd1d2eb6ed0921a4ce000da67e5a1a9adbd0892aff8a186a9c205d7b5c7b11 |
| SHA512 | e46354753176c1fbb9f5958296bf7ed28ccf8d047df45f6ec19e5cd539599a382887fd72a536374feda0008de6a37763ec28319105bc28d38ead1c4ebd43c207 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 994c94cd46ea24b800c866755e094fc3 |
| SHA1 | 93d806f135caf3d9c82ea12f6ce4d5809f434f5f |
| SHA256 | 0b3915f824b2649cc19ead925276e7e3d6c9d320930ec6978705587e585a0d7a |
| SHA512 | 9332adc8eea84b73ad5887c14fe938f8506713e877c0ebd06dccbb4e71f76a70747055a752ea39582b0ec7ba28e5f91a31d3c4cb87be1aa3406d290ac14bcc55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7a428bfc5fbc6f72a4ea12e849dc22ad |
| SHA1 | 1e6184b04851415f35b5c4de10ee192e593c6028 |
| SHA256 | 6dab574ae4a9dd3a1e5fd28a1c28e3e6d2b9acc300993c295a73d66a87928d66 |
| SHA512 | f9ed038bcf9e3efcac17c244390dc9192e2faad0fd2b9ecef831d315fe8ee781555562c194192f2b13858c5372c39df73ea5dc49c63e32c1c45cd47fc31e6221 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b9b6a59a4130c627d6859a08d544fdaa |
| SHA1 | e15e0d1e323653b1983a58daaac511e3d8a0cc7f |
| SHA256 | 86a88e0cdae86ce096aaa3d2e30da52069f9e95d80680baf59d5bec147b101b2 |
| SHA512 | f1fa6e1de0151b1ca4dd0278353cee1f455491679819142b8e44cffa51479789dba41c1d688a0c7a6e58db51a6361c8513def62931cc1db677802e954bd0752b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3a495908c0c239ac957bb12d4773728c |
| SHA1 | 871d50b148af97c24d8fa08652f17cb6965e333a |
| SHA256 | 5bf1161a5570bde5e3cac9bd849cc6cb3cc302111f8cc8db2258b9123b153db5 |
| SHA512 | 3f2a691fadb6d89c4282ce09cd675f5856999e0842d2b1e20d5697d79540b78d8f60fd18f13b21431bc2969caa7b8606a608524cb466be14b49441eb3070a2c4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fbe3519f28446d4e1133212f7c401095 |
| SHA1 | 445c316ac4e712a37bed95f5d7c0ec6cfec18160 |
| SHA256 | 9de9e09f4bfc8cc6bf44d2f13872dd72a28d11d3c87ab5f54924c3df616c63d2 |
| SHA512 | 871eb1d14e350da7d64bf8dba6632a34b9b36de7b886a3a0a008a0a91203dd1c6d6394133361763c10bd1069ad959a0f722184e29735f1a3fb1a1712811dd867 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 12c82ab84944084a1d2ef422def30803 |
| SHA1 | 69e1ffba90f5fd6ac3ab96ff6b0168a31c831887 |
| SHA256 | 12780ceafaecd37e0d9436641a0c177d7c8a76074cbb412808f6839f776e64a9 |
| SHA512 | c441a3b1d639a05adc6547fc7bf932c34a2e27f5f8f4c77827122080db55cb5049430e0d42e9dee3f86947804e2d246b6d50557283018259d91d48d6fbdbb892 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 90817939f9d63d3d658def9d7f148b2c |
| SHA1 | c36f437011dc9cfabce8f3e7f94b84d56b2eaeb8 |
| SHA256 | 9cfde4a07bf3761e58facb1023ff0056fe212b612b5007f05b121e01a21f4153 |
| SHA512 | 590f0e925bc78043dc1922e8f15183c262454db2f3542e59abbe269e8d239a1c7d8e54f83ffc81cb0ea9d4344e8a2b44f4a5322d4fead641c9af4d73e6233c87 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a202a8db91274942d26e7a8f5e30fd10 |
| SHA1 | df9d17610c210c57c4e56c06bc32f834362c81c4 |
| SHA256 | c0b4f742dad5e6c3853ea8e35ef6bd7a452b23840c214a9041ebdd7ffb614150 |
| SHA512 | b3906dba915e16c4b3a5779ec4e6afe8f7fc8e15a0bbd072cf56dd1648cb99c19e5ddc84c9cc3215305284d8d676f127fab0989fc27980e450147d1b82875499 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 90e7ee3e8573e4e1b245ffb2363db79e |
| SHA1 | b5f528fb6771db97be42f4394ecf2b03e96278a1 |
| SHA256 | 99a3b5bbac7b46592a3fb4905c6ba69bc25f8a61f3d505faaf5c46f6a0050aba |
| SHA512 | a1c07cb8a43d62be93bd8edd1927da263317c65d9572a26291a38f920af462068ec9371ea611fc555df68fd18930ebbd48999732662c12e0c9e3c7183d43f99c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | db7cc657bab9c6f96e69f6c2a56baabe |
| SHA1 | effe53e118a6bd977feea4055a0a1a7917fe7ca0 |
| SHA256 | 5d7ba4134ef7569737626a22b16366691aaebd591bff474ffba2d234d7e976a3 |
| SHA512 | 8d0a56acdd9d1c72409337c69e24903c72879cf51176c94aac27ba8da6354feb33b6aac06e9a5155fd0197d35c3e51902f4a11a8480da27ff9c2cf4d5dc7586f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
| MD5 | c4a5ec264888874eadc279342c3c6001 |
| SHA1 | 0ac4fcb62f11e29cb030c58b68d72c3a4e5e045b |
| SHA256 | 867da22209a3e4cacf2671c429d480236134ed16688b02e54e750a64b2f5e2a2 |
| SHA512 | 9fbdbe6b3a59a7d4aa5626ae372beaf1bcf9e486c2418fe9b695a0ece8935a145f5d016f97d0b03fd23147fcf81e84adb5f4acb7f1f7d296ae3436cb2aec1004 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 52db536e8b06ab23b70d74d8fb32251d |
| SHA1 | ae4150d6aa4e12784902490cafd525dfedae5f72 |
| SHA256 | 93ede3b24c2410d7bd8299feb29d9ad2f4f224191f0a5caed75e5024f1593569 |
| SHA512 | 182cdd142c11dc707d580e0ecc6bf834d163f35129d8809f57dfe8f9944f7eed21577836975a831bf0b734733580226235e95f4f278af72c777528f7518c437c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 13adc2bf21f5b9e0e0bc0e15741d1942 |
| SHA1 | 9c1bbd8fdd2848ef37f23d8632758be834d6d5e8 |
| SHA256 | 34821cdef13b77ca69ca7671c85fa5c329d3fd48954d2271b640536f8d3e3d34 |
| SHA512 | 8281ead458cca54f567441b003546f48aac2ad6b06625e1c3250b7329ec5d797f958377109adb0fe533b428a000109907c62ea1d955a5832959122e3aca1435a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a6ed2030abd85735b60c96034f961a2b |
| SHA1 | 506ccaba062e9c7d7b2fafde1a0f7374e00be6a5 |
| SHA256 | 039a9e60e7f06d996d86808e6d61f92aad9c1467ad1bb2c4b64c4652f067c1a3 |
| SHA512 | 468e651387233a671463c455955bcbeaad22f3766352477a68316ed0daacc5a640697f907e143056cc54d8027176d399793a9465691235f8864913a765b83fdf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 6976d40f3ae995feebbd50fe97e3402a |
| SHA1 | 24aa8048dc29cd2e0d89dd715fc144e6d323b101 |
| SHA256 | 56a04b76e5298ccda3e572b919df18aca05efc62015dd52d09a731da6704c4a1 |
| SHA512 | b3eaa012f676a63196a1656ebeb405622191ff92a70a488876148c3ab35321d5a115d854edf4c9896cd8d018651e5d25a9c6ff7ec34a79d178562d8bd99856c2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | db6933b7c5d86baa6df7444d9cfc9806 |
| SHA1 | 353ff38941dcde7181692d125db9eda528f9f13a |
| SHA256 | d88f2bc727eeeb91958786094d4b592ed74713b9f4f8a5f81c32a631aaefa273 |
| SHA512 | d76fcd1e4e2c9c8fbd70050cee908d006fc73554d358596a080205cbc2d1871b321308c728d1373a8118cd6287c93560f4b981809e537dd750a5a649efa18c83 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 455bc1ba69c5687b68fd2d162241cd81 |
| SHA1 | 9d5398df23f4c4cfa76257edb4fe4cebb9b87805 |
| SHA256 | 929e9b6c0826bd3857c8e6e95c9c53821952d2075a1fb22f12bec7857384579f |
| SHA512 | a2e8df2cc1a2d3cd40177fd85fc99b019705f674c07db2eb848e82ce729eaed839c00a8cf6f9f0d1b8f7610149858afdbd54519a5bd51bd77bd0e86ec8544885 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 46ecf1f933f05155318a5fc3bcb71c46 |
| SHA1 | ad4026fe86e407f128a0b85890e5b00f9dc85396 |
| SHA256 | 919eec1bfa0e704eee00b540c3dc22f19939d2878ac636d3f99f1c9d4330b4f7 |
| SHA512 | e78fe435b2fa38a8e5a2d5df26c1ea0658a2df85854cd160aa40f41b5dbc844a0581dcde9a3adffa78e878cc560301064cef633923b7c2a022b5fd10235b96d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old
| MD5 | 2a00ccaee1012ead40298c6159bf534f |
| SHA1 | 93fcd27c1e16e5009f66a78ac59f2f54f71428e8 |
| SHA256 | 42edc46a98ba1c7ab05916b1c2863f4cf439faa2a2e8418d6e0155ad88912a67 |
| SHA512 | fe89956753830ddb61b22861b5491d7fe9662e485e40d4aca6b1c35198635c4051a40afa4f730ae82adcbdec7b51d984b9988f5d454af1a8b23174d8d5dac6b1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e826ddf92be4c089d646b49b7d5184ee |
| SHA1 | 32d346b2877c3566337cac7e19124c2b3c515a54 |
| SHA256 | 35efc3c019ed4a4a81a1a6e588f35a5cd52e5de8fb2e66094eebfd38f5e7df92 |
| SHA512 | fd74b41b95916fb7d9ffe72b9eb8eb9736aeae754efa5fe04e5434ff71443b05c20bbc8dd22faacc421984c699be282a11a29219b07e49403fcf8c612689e592 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 09fef1a13aa8e0d7c70816df114f3be1 |
| SHA1 | 5c966810c182cb1ddc95147e4bb24801cc73c501 |
| SHA256 | 304ffc6eb63733e01f9bf584d8f7428047e1c0f6fde45540e170cd9af8c63920 |
| SHA512 | 73e46c79f9201bcf985f042117f5b0e3622c9b021a804abc723d77f2887073a3298a6abd72440e0249256e51816558e1950958306c3fd2ebb597dd76190d9b86 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | fa908c43fc7f7f463fe82253dd242fd2 |
| SHA1 | 26fd75a314e4ed445edf0886760fbf2b43bb6a65 |
| SHA256 | 8a0f553113993de30d3b6fca8e2854408648c883393fa5f6318e15a2462ab977 |
| SHA512 | c1cffa971c28e5fd0fe20b2ed5454c925bcae7dcc027744c47bee508a2619ef6087af578478235ea82311db999999953b02919f2b3f4df1f615e21501deba2f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 025429fba2a86400f328878600a64bc3 |
| SHA1 | c1219b450fe6ef2b53a974c40d205315cdc8196c |
| SHA256 | ed946baeb052ecbca2b71a00d08b652eec218131763163d02a7296879c67ae90 |
| SHA512 | 48d86fd0d23156495b4afff08d4ab5c7739e13c999e2a9e6750003aa0047f4f34eecc2f60c5703d077ae8233d242f4da6eadae0059777ef4c028929cd845baf7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | faac0637e9de4b384678d5d39c5e063e |
| SHA1 | 8924acfcf2a1604d6a8698bc6f7a07ede699032b |
| SHA256 | c92f5b5e1dfc127a80b1b01eb32deb450e3d65211317f37ef0d2a848e03900b7 |
| SHA512 | cea89b612b54e53a947948419f6a2bba25b068cc0d540756f0642c6593ed8df435c9eb5587b2f3c820989b267c67c8e4719a886a3d8dd0fe6782c5e693dbfdd3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 41a137c3405f5513f75b8dcc520fabd0 |
| SHA1 | 6f56a5db6b0a44e48401fc2b6ee681a768bd86b0 |
| SHA256 | f0cb003f21a9ea1b52a2460164035145a3511ae6124106fa6fe4660e04fbf736 |
| SHA512 | 5e5545cbff2931d19d918e4d96566394decfae280fbd1f0f53fb1d1019cf50a87dba7dba712fcf8c2efa75c1ae514a818ba2dce5d8fcea7c5a3dbd6530189779 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{1FAB8CFE-9860-415C-A6CA-AA7D12021940}\2.0.0.34\BGAUpdate.exe
| MD5 | 3f208f4e0dacb8661d7659d2a030f36e |
| SHA1 | 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff |
| SHA256 | d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b |
| SHA512 | 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 68d0d73368e1f8c69c2b125b3e176753 |
| SHA1 | cbd82d4fea270606da8a48a634b2223c3cdb4170 |
| SHA256 | df38fe29b918865293a3f1893aff9be2fa4d152893ae316fc1c36bcd81f771c6 |
| SHA512 | d61969776ddd405e5b307703df0de7ef3b0802e393a1512feb1f8c66c3de7840c44c3a9d6d1eba10835ecf199b09157c18194628570415a3763af62cc9f19e47 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.185.29\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe
| MD5 | b18c705b3c68cc49d9bf3649abc75c24 |
| SHA1 | 6dc8963dea0f3185368790dee2a346301b4fa24c |
| SHA256 | c2ca3135f3cafd79bf90d4cb3118943ca17f40e0d651d1fc32b1b3d22d1412aa |
| SHA512 | 7ac302c1e85c652bd897ce1af812950cd23a53c041af82fdcecb2314bbd1667bf2fc672dea40c21858e64befc9bf60190a4428f0b41c30317bb0e5ec7c00f71b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7bad7144bc373aef3985317f53415886 |
| SHA1 | 0d8a3eb3d9fdd9745d84df15d8286b448a58ba82 |
| SHA256 | 4a0f0f26f3d6cf907447158e76bd99e5d31ba5415d54f4e1f8c11b6fc1913035 |
| SHA512 | 0ebc5a0f479227277384b3dbca11252384f432aa80ba382545a90e15341994c4dde590b47771c1a04a39ea0e690b16a16dff8422293ba271a27c3d1fa75b768d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c3803000298bdfb5cc943121c7054245 |
| SHA1 | 4b3fc70bd4eef31ec4d32c5600e0446090774534 |
| SHA256 | 664cfb66fa28fcd62ead6d5779ddba358ea75248127756922dc0edb6eeaa4b4c |
| SHA512 | 927275e0301536c6ecd99a3d22852a6ae776019fa4a1000a73f6f650b9eef098f215a8caf8f5ba18d9f0df6ae8ae420debbec54583719aa2ae8c8c011926d664 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ac8a053b5784ae435ab6f7f8c52f12aa |
| SHA1 | fb9fd26ef67ef2ea55812260e1dc7d68232b6336 |
| SHA256 | d35aef4d0fc82d0037a14350a67744bc3d959bb5d25b3fcd2472c70f4834062f |
| SHA512 | 0c4fc00e681a1a902f419479969fddbe7a3f5cafe080cf4bd4f9b1bf7c46a8b0db9c53796bbf277505bb199b3a025f36bb143bf89798758c18dbbd80577372c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9a91686df4bc6c367e318fb95bf55f6d |
| SHA1 | 7cb56b5648a7d88b5bb7dbed0aff6d06413c970e |
| SHA256 | 9ec0e0ef6a6e0a39e3ef4d0c5253cb69e875223087731d5a9837a9161f7050ff |
| SHA512 | 80acd20ef745744ddeaeb97afd8ad0348fae35b880f37bfd986b98142e183ecd4794a95cb7f93272f28c1256b5d2f87c7ad715dd67da2058c34a70de989fd873 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e65e84337f52d5bcddf1b291ffc2658e |
| SHA1 | 2769deaa2baad8560aaed38016a81621b690098f |
| SHA256 | 48bd670a9319e731ccdb87301be36dbdd031d827c1dd1e238fb70202862590ec |
| SHA512 | c3cfa9ffe64bf51bad50ecd10d48c46037a0fd6c0b1214a7052eab251ae844c609bc2bebe70a926d29e6582d91c64952e656e47e54cb9bdab5ed79cc4216b636 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 84d942a0e03ec75fc20e1872bfe8030e |
| SHA1 | 93cc0c9254c840a38cd866a7662c07412e0ddac9 |
| SHA256 | 185cf73b8e40f980e19381e1e398a2fa6f7654ca107a6fe4bb9953772ba15dad |
| SHA512 | 3faa8daa0df02e4719d833cc338c17458cd8687dd8a30d8f593edf516b0ededab5e9af31425c407e7b605b72e943f9660728692632c3e7339e7b62de3793dc29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f6871bb314af313c4a5ceedaf0b4d8ab |
| SHA1 | 56da253cf1514de0220a81abaefcd80472d06f64 |
| SHA256 | 14eaf75b3c35b882ae75dea8405a6fd19ccc0171f9a3c9e79a2526d87bff88cf |
| SHA512 | 6ec937f7833faca25f63eeb4e241f79e64f5d4b981a208520a5cbbb8beda3fa34a14e3c7a8b0cee87409c4c74ef42c9b5453e6d30fb3604c0ffd8acc059a579e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4a7ac903d6c77e416a810281255226dd |
| SHA1 | 16c300b942cb90b3cfd1b40c6fbfaabf7d1ce082 |
| SHA256 | bdf1ddb8834a716aa8014834d5f9a4955e4672be89e606fb2110ef87cc567fdf |
| SHA512 | 80a9f4b047c90088ac730c37562b28efa87744b3d4f121fb339161046aef296cd00688a365e2ed181f1e3be6e06c481dc5ac6f6f15e18d31092a7fb491729df2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1739e35809a1262849c86d263b420111 |
| SHA1 | a6cdc10bb53c8c51b5ada2160c73b3e364cfea81 |
| SHA256 | 778cb4074a9b118c3a11dc1685595eea64477a88f6380467bff211d6ed170509 |
| SHA512 | 7210129de61932fa1d4e58b9cf6d0e9dce06e12292e05dc8023d7923984225d468ea1e3a055a1867b319ccfd4326da08ae4b7205643029b9f7d4de154a2a4868 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c1e1b8626dd53b60890da5d2ba3b2dca |
| SHA1 | 243dcdc8a46c04d78e2a398634755065ce73a654 |
| SHA256 | fd0778fce2be2643230597d13212580729a097438d3b3625cc2e5c5ac415b9c2 |
| SHA512 | 3f4b0cd5777339fe8c5851302071977840693106ab7171d0d5bab6f7c1c3969b194b79bef318ede85ee3bf35f2668aa995866d89574d76cdeb5fe119f818721f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2aa1c177587a0a0b2a30b35584f99d9c |
| SHA1 | 8fc894e97e5343e3f2400c1ba308b31750f5bfc2 |
| SHA256 | ef4e97ad31052f396b51966b0b7c922856f7fb52a0346d07ecf4219672d7061d |
| SHA512 | 111cf2022b77cb8587cf5339582b0ee2ba917ce514380e15885bd3ae6a0649a4d214dfc75566d2e9a34835f0124604b961a9ac6bbc43392a587fff4428dc8f66 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | db04d57ed01969902245a34d983cf6d4 |
| SHA1 | c8940c663740b09f2b1cbbe703707de08f95489c |
| SHA256 | 2f56e216d362b7aeaf1f7d5d0bd88c64e729b8c50bdc300a1a72e4d3d24d5a20 |
| SHA512 | 21759639452520252ec7406b1fb72ba1358931407276a3146e1ae8620484396238e8278a69a242f0091b72da59d9a3389866a9758ad9f5bc0296f7ae596d2af2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 19cd560570ae1b2a05265233fab7b2c2 |
| SHA1 | 57c56881d3c8d51efa4c3ff552f8e5158728c3af |
| SHA256 | c645da87cb8cb13c3b6889a3e3954a6538c40ee11b9e703c3fef6a7ea878d701 |
| SHA512 | a6e9e8bdd6618ca9def0b05a98bbce3b3664e26f79b6ee54d770cc23264931e0e9edd49d8d98c76cdb8a10b614fb9739d49214925599a3d13f68459db5cf7c5c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 11bfe3f6159aa9a6a1dca4b144501ca6 |
| SHA1 | f4ca06ab1338eb42feb14bf4fd09108d9abd3b2d |
| SHA256 | 7bfa18a22b2db141e7d122c4dce795fc5c4cedee0f0833415a23aac695a93bb5 |
| SHA512 | 38e007e0abba2c567f9a04f01e7fbb800d7b5568ae9784bd82e3807d11faf7dc2b476c6e4e27056a958f9a7ccca9f0da85a3be511561205740332e9aa57c29bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e0b4dc3438ef6d4404df86661aa5d496 |
| SHA1 | e21daab52d6f0cad82b756d82c8110df6c5594d8 |
| SHA256 | a0487c7ca65441832208c3c13d75cd12de80dfa64760b37cf0fa6d24f5b4e4f2 |
| SHA512 | fc88a21782c043fd3c97eb01f05213c7dd5c85fcdd5fe125d9b24dd0a885d83d3e2e174ea8e516ec18aea88bf7c6854380ae391a66a7255e9c76658651cd3de4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a9376ff0603db4ba12534390d0684f2a |
| SHA1 | 9ca922c4bdd93a0f133f549a8c250d5e16051f3f |
| SHA256 | 0665274ab89148dd52da23e0d2f2762f840335dea304049747083d73aaa32d8f |
| SHA512 | 9dd6b3ba57b7f2645dc4d84009d6282c87a919eb50eee4bb4e7cc3f12986ff3a7886e3e86854a81387f01ca26f1b9dea047f536aa1eec98998002a3967c2ae7e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a673f67ad6e2f96fae57b607e7f001d0 |
| SHA1 | a7009f711f28b97645066c6c67142397abd9726d |
| SHA256 | 9778410c6ce33de56ddbcee62c710c20c9d32673b754a814dca5a31f87ef7cbf |
| SHA512 | 4137e2a963739afe4b4e4186da8abdb43f7f58c1140823c91fb340ab837eb5fb9f4f4d64acb7c0a44d618285441d36f396906966dc323dee42c87c4d4328f651 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 894e112366d599284224a0e94b5c4ea1 |
| SHA1 | 768f48cb69b762038a6f4114791ffc93637a95aa |
| SHA256 | 5f3f2b1998cb11149c942b2a758997bd8f64ec067a4f8ed6e97fbad0f0eb3ef8 |
| SHA512 | c19c1bc2a90a4b47835ba309e045b5b85e59b58396600eda04c576bfb6659906b183e9302f3b5a7e395d5de1e84a6caa8af49ef4046cae09c95e2b80b3837223 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d5c4a36f23312e515dcb34099ddf8cd3 |
| SHA1 | a585ae72e1951ece7a76c1e91835c15f608e4b7a |
| SHA256 | 6c50e7faa517dd019c6fb68ce1473d7bc68d3bc7f5e9109117d7e542ed46c91a |
| SHA512 | e20d82d8228f398a99f32dd9f994c57327d7b3eaa36ed1178a5614ba876740cf614c7fc1756c73b390f2e3eb6e8a00a0c9f9c31954cb373cf7b11abd3ffef28f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 922a58b3d6e7fec34a7c5a614a2ff942 |
| SHA1 | e9378f30fcdbbbb7d9c217bad8646932a5c75d50 |
| SHA256 | c5dfdc9309c2811237ca68e766ed77cd643ec9b66acbcda8447b0bad85f41791 |
| SHA512 | 700d947d573f6c54d5f2ffa9341e4a791279128990c50d73812114e376f4584ed34027713f5e47acda708c7446e40af995c8be900266b39e9632b3d741057efe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a218f42f7f6366b6ff95a40b603f5f37 |
| SHA1 | cff4c86b56946cdba430b8a643a0811f1600c81b |
| SHA256 | 87588773efa0402dcfa6151f919c6f46607d3279e39cf95bf3446296840c19c6 |
| SHA512 | 16f1163a30835ad432b5ca6e6a439e0726f2623a2f32030034f935174fc5cedfac7914df23c454cf40e457fedd2f1c1bb8889b1e1aa3cff0fc5c311ca1bdd0c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b411379a8c284db73d473d5a777b8ee3 |
| SHA1 | 66004d610a67c80e9546bc94533796af573acf57 |
| SHA256 | 58f380e8546959a241c800166417d9ba33233c197f0268014f8e7cad3773249c |
| SHA512 | 74451111c77c5219d533d32958575f6bf684f314c6cca67cf641a9804d5429f0f1233324d400c59823bffb8726e2753c4c09754f3de99d9575ac590cdb4cd3c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1a997d073560bff4f7134ea6b91fc323 |
| SHA1 | a9db3af97724b09336f597cea7cf33e1123d63c5 |
| SHA256 | 49aa286a41b403265373bf721ea18c1ee48a3a5913b140ea80ec6edfe065f36c |
| SHA512 | 3d45ca55678f4a974fe1cb8aab902dbc8e090a29713e15a723ca562ca333e90617cd2d4331ceadd3d8eae0c6b508e45bd8a320240acc6e18847b580fee830637 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a0a731d71953d07f69409693e4650e22 |
| SHA1 | 215bf627f2a1d10e12fea9bc56d88f9379c204c8 |
| SHA256 | 376956f286e09009d58b4cf5a4daf3866bfe9e1a39d4a627f9670e02461132ba |
| SHA512 | b76cd9074e788b5490403f8e894a560ee4c244e069d10b0bd37911ce5077f4e833a6f04ee988e9ebb428f7a048f9497a32cee9d3bc073c7cdf6db9abd5c7fa65 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ae7a16f90afe71b1e04b042f48bc90b0 |
| SHA1 | 4bfd78823b417f5312d9fa2781fafd38ccf4187d |
| SHA256 | 3e30ff404d7d28c8a5177598d10c9be2353566494f52083587d0179ab4b86207 |
| SHA512 | 34e33b8e724623d6ad597e18b19d79444e28bbd1114e43fd9ec60f85611bbe44ed1a3ab056d6683c284b2ba24e8f6ebb898b8dbba00698d02ce49929bbe4b5a1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 23b1cb34d5fc4cb041f52afbc0a22ed4 |
| SHA1 | c9f267d0ce305f48b4743f6b091c4b6e8760a8aa |
| SHA256 | 88f69065b4e88ad6099dcab7dc395ec440839d015d476c38a80d81f203900f27 |
| SHA512 | 803945451810164add63e0e315c21e6e05518d5af38327d0f05ea7692fc96602e3016a204c3d188d0cb1fc15227bf32470669f10a1f8cef605ac4206806c2faf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 004f9038a6f185e40e885dec5e11676b |
| SHA1 | 9d96ce801c2b37587057182ee83852566dacd4f7 |
| SHA256 | 4b6da590943cadea097c3544d262c6f4cd80648934bff542aecd9ce82a3ec967 |
| SHA512 | 1ed3dec063b220fc88160d928e8c6dfdea2582aca0207f53f79b7ead754e16eab58f9062d088812d71a8c17f8ce4f28116c930338c22a30924a727bc0411cb7d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f400d2658186922d44f35bdecf8466c8 |
| SHA1 | 4641e64e747e18336290d24e5ad4e1396f9cd8fa |
| SHA256 | bc15936debf6df7f893ac5eac29a9a613f2fbfd6064204dfdd24a82309eca225 |
| SHA512 | 621c5d76950ae2288f2e47735a73f14539a75a07188bc9ee4fac0ad50c8851d5a74aa4dc5dac4659997f902fbe317e7f6a826a55041903325b8c67314c768de1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2718aa067817bb60b06179c6ce1879e1 |
| SHA1 | 9cd81889a14d1e69618d10c6b7c24743f6a7c134 |
| SHA256 | 1a419cd76c561a11b78f743a51b5857ee8b798ea368ec18db90b5fef001d063e |
| SHA512 | 4dc57e4c5dad04817f5fd2980cf7cd0334754e9e2277e8663b3f8ac1fda62230d1d69a0933035a6830436d33a382a0a20378dffcdab95318021a406f007d8fb6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | da708b53b614e0e68c91a360423f3745 |
| SHA1 | 98fd4e6d0eda42c68d5df45fc20083a560527bcb |
| SHA256 | f0d0a739af1bbba4fe18aa896c954c5591203b5419f567013500a80c8c03460d |
| SHA512 | 9d793c9c4e0bc4fcdc19d9de5f03ea0c7f93ccf673630ec96fac58a1926878eeb1852bae5a30e4aae48308a46f9b13453b09cec57ceb67cdda28ec125ad13fbd |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\SETUP.EX_
| MD5 | 5070a34dbada1aaa375cc572b5fc7d0c |
| SHA1 | e74b7ef714755870976abe3d2b4a7db0b9cc21e5 |
| SHA256 | 03e7a32e1f10fced6a07dfa4e6cfd92510d4bf6929d423798e4fb5ca91fe6c20 |
| SHA512 | fed3fcbb64a59070b0efd677ca2edc982d28e37cdf7283f2777af8aca7d3760a7eefb8d01b3c2bf4b4ec3708a74c3412f0dede91e31dca1b6f8a4e4edc673aa7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a795d6af33d01c1c672c3c949d5eb16c |
| SHA1 | 46e9cb416242b2ebcf3600eb258f7fc977278bad |
| SHA256 | eef8a043a4ac9897eb9b3c3339977db792f1a425bb9dd5dc433de7aaceb15875 |
| SHA512 | 822e4ead91bea0aedd061f77ea31661297658bf6f5dc2dc77571abebbede11e369770aaf2d88f37e753dc0f5b0c403bc9291d25e0115c357507105b450e1a4fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | eaed858380d1ad5b936f6b0e2277cfa3 |
| SHA1 | dfa3b827bc472d3ba79bac077b74fcf68fe13d56 |
| SHA256 | 40760f20b91fb69d43e8f958114bb41df2966d3884d5be3b5ef98e8cc0fbe57f |
| SHA512 | 4015c1f2eeb4a8459c18fbaca1caba0e09be7aeb8752973156da218c672cc0075f25b134c099c9be07d7ecbbcadf4218a4f71e64ec3d40cf263b91ec1427214c |
memory/408-3477-0x0000015C6B590000-0x0000015C6B59E000-memory.dmp
memory/408-3478-0x0000015C6DAB0000-0x0000015C6DABA000-memory.dmp
memory/408-3479-0x0000015C6DAE0000-0x0000015C6DAE8000-memory.dmp
memory/408-3480-0x0000015C6F000000-0x0000015C6F249000-memory.dmp
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalState\ThirdPartyNotice.html.~tmp
| MD5 | effecce1b6868c8bd7950ef7b772038b |
| SHA1 | 695d5a07f59b4b72c5eca7be77d5b15ae7ae59b0 |
| SHA256 | 003e619884dbc527e20f0aa8487daf5d7eed91d53ef6366a58c5493aaf1ce046 |
| SHA512 | 2f129689181ffe6fff751a22d4130bb643c5868fa0e1a852c434fe6f7514e3f1e5e4048179679dec742ec505139439d98e6dcc74793c18008db36c800d728be2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0cc011ec1180679a08cbb4702bc26795 |
| SHA1 | 83a15a577c5410a20aa1cc3cf459c0494776bb0a |
| SHA256 | 947373e02ed2145ddefdff61ca500b444e1b0738f02ed70c0761c80129bb7b39 |
| SHA512 | 870ce227d8c7582a876b4e3bb978546c44c10766bfb83d769d4aa7a4ce4186974bb64f419c71581a1db244ecf788ee5fc7a40bd0eb568f97a4772f8aafb5e1ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4e38a34bd13c0019b7359d30db33a966 |
| SHA1 | c94e12ceca1a297dd53c7afe55537c461f6727b0 |
| SHA256 | b92b161f180f01fec3032076edebca61dd2be30c403b992f5bc3307dff8b9d10 |
| SHA512 | 146b3d9f8ec3f70bc84ab8eb37f90a0552fb722c19c44d8e0eb8b701100a9c1d48de84b5e6b904516ca9887b16f65b21760da890b8d58a062edc320361d2178a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f9d3a467c9bd9f7627e818ebd13993cd |
| SHA1 | 53867252197cb1edf5011f39ace006a34d9e6780 |
| SHA256 | 1cad1bca5f60216face3f16b6c81c919495b2db74b34c9e536e2a7354b96f3a2 |
| SHA512 | 32e4cac2d2870ddfb2eaac316874e904679bbefd9af94d35d3a9b4490d600ebe93c977f69a99f12bcb70dbe618df301c80c122e93713dc2490f91fd530027196 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | aba9930f794261224fd29a06e47b9f9c |
| SHA1 | e0170a2738aa8e27a76262eef4da81e7c83efb1d |
| SHA256 | 3338cc9f4728b397efeb48ce46d22b62ab4139e83264e23d419a6c0b77c078f9 |
| SHA512 | 6e37e90505c09ab914e8c2f9091dfbf4495dba2a788e3c2a88e93854c14a446449bd86932274271f41f77e03b83e3b9226edfc99e39e79155ac66fbd24630a49 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4b481a72cefa01a0586b7332732d8c81 |
| SHA1 | ad8a7593843c9777fc0be501237caafe0362d1ca |
| SHA256 | b3d2ab3bfb1c717efdeec27de626daa0427b4c6e4895409da9476fe0eab68ca6 |
| SHA512 | aacd3c782c3f96bd588be8ecea7b1c23957a60ec939cb38008158e02a341e766f6e1cbfd38daa2e43645f94d875f50f9a9a345940317885ff588f956b4180685 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 02877402ccfa1f094401a79a60770626 |
| SHA1 | f8961b6543631235d9ac74bf222a1a05e1f39431 |
| SHA256 | 7cefd20d6913a62363bebf70281743689a2fbe6e21fd6a1e11dea6fb8ec7d026 |
| SHA512 | db7561b0359bb12d3bc25a4127919a71c7a860fdd108c17737d3bd8630aaf2f5bd541266a58cdc208c9893486cc1a276fbd487900833ba3e466cdc311ed0e18b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9f0820c1f745420bea07d1870cbfac91 |
| SHA1 | 2d721cad4b6383da4d111883e0633b71c961e7b5 |
| SHA256 | 0501f5e8fb4d970d12905a9f5af6f744023f48b5a115db02d8f6abeea7a9ac78 |
| SHA512 | 3b8ea0f08c39c0cc844cc93662c546c5d3cc26eea0c786565921aa3d9b9bdb9982c8ffb301522a603bcff76e4e7b61b071e8687559a847d281960c33538a06e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4cbcc51826b9e50339d403f1e039c798 |
| SHA1 | ff0684d0c7a2898a5cf1c665076075f2eab0c639 |
| SHA256 | a8a838778f4dd7eb1b7eb29b13020f77c6c52e0e76f051cb29e13440a50b65e7 |
| SHA512 | 351c796e3bb12ec4a3fcf65f8ed8f5c3d75c592380cce107eda369909c3cb87717dc7c6095505307921194b0013f094ba42ed7be758af49175ca9f65cf964591 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a6391bc5380e1dce265fb65baf557cf6 |
| SHA1 | 359125346588fabc0bb9f6a69aa948b0551ff80f |
| SHA256 | 9b139c603ab18ce8822f36de927a57bcca960df17c016b3acb34a7d2c7f1008f |
| SHA512 | ed3e3ddf57abfae0891d7fd2962091756cef78f310e37e1d1c3ab806b5dea06ee66f40d69139dd44f012a192877b882875cf6689db02be075e2d77951b3df67e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 53c96391436d616cb43bbe94d8a4ecb1 |
| SHA1 | 16323bd7838bf32a25090c4268582b0ee31ca95a |
| SHA256 | 5860fa396b79e7bb832964ea3f366c32e2c59183a03bcb1e1f1c3982a70d3d63 |
| SHA512 | 95e3915c32333b3959bfa013884a6d8d9fa3840a5a3439bd297a450d522e6a5c60f586cf468bc3184a8bfeaac3ece713b4045e613f7be55de457532a01da38e6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 971cc6716cbe091f69d376beca2e6b4b |
| SHA1 | b2ab04226fda911d2d34ba41a65aaadc30f2df5f |
| SHA256 | 55b4a52834610cd0ef1e04a3a43cdafb405eac319114cf3640baa65f4e487cdb |
| SHA512 | 09ddae8dd2ba02c5e0e7d8d56ad012e3d53c2ae82113cb8e15556218d0e5807548c1be693f22286c3a7b9de2bc84726d4de25a4978d32ea323ed3f49026ab693 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9f9a164d4253c9097dcc8b512fc5f495 |
| SHA1 | a5b54e1a95deecbb50a0bd63bf4a2a7e8266a35e |
| SHA256 | adc71675c63e5ae770754bf8152f17559af7e8776299cbeef8d96dc45cdcdc91 |
| SHA512 | 51507af307a3c31fa6c9c50b3545dd88a6317367b141be3180136521a5dfe32b847fdeb6a080aae1d989767039776837155037c2260360b1fccb7d99f3775adc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 59da11e23a130fa0db49ce9669ef524a |
| SHA1 | f762cedcc6b8675ebeb3b3cf9d51099c4be45f60 |
| SHA256 | 15a1a7568e435b5f52e26b8a232affaf15175dc02ec97505f72e995f933204ab |
| SHA512 | e9fb2f1810a570a2929dbfdc4748e1d81c6b46982e2e5eeab54a34f2d4e7e0b93b2dc02c2a96cde97fe958da450b5443933d7da3c5288e02eaf92801c421da6a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 397db3fb163bdf69ff92ca2a493d9a54 |
| SHA1 | 8869f395caa6958354c2598fa4fb93c9f6fe316d |
| SHA256 | 9c7db9a073321ddb7183d85b5d25e1cab9593d461ab64642475f84cc93ca8b48 |
| SHA512 | 4760b2d9e9706b5cde11b7c9733c885c12c3043e81540eda314ca0eb6e81744808afeb53f544b2ed1a07ae99bfe9466c41598edb01d76904c273b42884559983 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0dc45113809a61b95d2f464f17e2f0a0 |
| SHA1 | d33abf89be1f124181e39238d91b822d6cc9fc41 |
| SHA256 | 301dacaaf97171327936f210941fec2d770d0628e55be823c5186f3c738db4cd |
| SHA512 | 2cb1e927af12ae10f916f851d6cf0a74489a9ab8cb239e3f7c045e9bb29325d86c4d646c36f7382d22072c23ea6b104e73a85304faba28329648b5da8cc0a574 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5b485a06b3cc763b33de93458b54ba13 |
| SHA1 | b95c539fc085044e435d5f4710bf1f8accb4bc61 |
| SHA256 | 8e98257a0c95d99f66c1275ded87fe102733a0ba66f8dd602ee925eaaa0f73c0 |
| SHA512 | 8e2573880f811c48369d706bf2b7fd19e1f0eda49e6b14bb1a49c049d9787b6ca797207d172c97b2844efc3f7f6b99202deb961cd6dc52ba8415a20950a14910 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7a372ff80279416f8e6583362db06004 |
| SHA1 | 41b07f6eea7aa75d9c7cf797cd0de54fc582e5cc |
| SHA256 | c31fb6ee9058d62bc13e730287b68711275bdc298b58ce10b4da29dae5c6a5a5 |
| SHA512 | 88748b83bdb88881f3d6d41d427001c76a2c4b8fcc5625787e67cf54695a1237f5a7d4cc7c5ba3f57956d373d752fa4718d1513468deecd59f74d42e786a37ce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ea320d02c08c9bd0e89dd6f3a1dbcbd4 |
| SHA1 | ed972bde71c7477c02242dc292f0f514bdf263f2 |
| SHA256 | b0f0b8f6fe094651b9859ce928fcdd2f1736181025c0019be2df0231b426ae37 |
| SHA512 | 3e9275811722b47b5aa8f69c36008a27738f909a3f47f0954c7107e7a79aba923aeab8ec889891aad5167744b96c2e451ec108fcc8e0357b25c6385dba2789c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ee6212a788ddb27bbda05c2ea56c7434 |
| SHA1 | b327845d69fb3df890ef17f0f7466cfeaabaf637 |
| SHA256 | 1c1bc664f8652ec4681c5af9b9b63fcc5735de9a2505e6fe2904f01e426ede2e |
| SHA512 | 81593c22c0e5495ff825ba71b62af111c85fcef7dab2ab9f80c97be83e4eba101065cd73c3ae39fc8d94ce0a29db87d28871a9c31670bd88a94ffb0a6c4703e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e774023883e35d6c92cca1d2ff960064 |
| SHA1 | 7c99fa05920d75b6ecde163c6a8f9171806cb7f7 |
| SHA256 | 252e547f4d358d1818c076a3553266ca966624a67936edd70a62512e1e91b35d |
| SHA512 | b0a79b0928a318ef4b488a0ff8702cf5a9d0bf973e610134d1d657bbe3bee4e0b0186f5acaf2da67e46ed66f37ef42566493bae6be3f7597ab7f5f9178c5af24 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2773719708f55a8cf09eab680ef2d018 |
| SHA1 | ce52d80e2ed7049f5dc8340d7a056afa137c175c |
| SHA256 | 59b3b7209090bf3f4b119e7a1e70b61556781c4bc47e8a5426af1e8d83bbf09f |
| SHA512 | eb77829e3fe85c3a5024498bb6abcad37bb6bcdd4abdeda57bd20280eafb2a4980d02511f001dd8dcb67a01a9ea48088acaaa961bdfd96cc5626430ef6c4933b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a1a443123889ea48f28461de587f45ab |
| SHA1 | 19a43c4ef5361a9db8bdcfdb6d6cecc9a53b717f |
| SHA256 | 087a168182bed5a9653897a82f4c0c00fa6d31b5f587c67922cbb5bbb14c5d7b |
| SHA512 | fb517b3043645251d3d7690be4a6b513d36f3d1f26a492399df7935554a1774f83a4a751e4e9c24a5bc734cecf1da8f64842d2b47e1f7a961fb294e92ad8e63e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fc4fc306e6ced6af88e91d9d6a9302c2 |
| SHA1 | ac74e3a8a1c691ae8c9254de7e893caf8efa4eb4 |
| SHA256 | d3c38edbbb5742751f694f39a4667be5fe602f8c1684f4283878d63ff5dc6a72 |
| SHA512 | 080917dea3a33132c6176a4d057633ef900b86446e79ca59ef1c230543ae35acfae299c5791a771896deaf88ddb08441504b8ef9f183d14cb9859fad6c3fdf94 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ee688a53d0451c05bb17ae4d2c74d5e7 |
| SHA1 | dea77718a8b8fd4d32195b67f08e5354a8e88c09 |
| SHA256 | 8301641002a26d73323fea23fc04506fb3669af11f7efbc2b4cdef41038614b3 |
| SHA512 | b22473438f830ceca0c639886640cf99e80547cbb54e1aca493e926e439fa1a9fbfd8acc074ee6379c62cf1d359c1a47010c814c1a72e23b0d6b3fba4632ff16 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2ac5bbdd56863e8bbd4d0c32aaa9c5ea |
| SHA1 | 07fba77a9cfbcb6a8cf475b29b04559474afa6ad |
| SHA256 | 059065109a5140e11a496904506073d3f06893d3e4ab8f44202266edc0e17ce4 |
| SHA512 | 4d7ecf0e99708a3ff050055857ca0012d68f9735f769fd44084942e895fdebb08a03135629f6d76a506f47c3f443211109923449d1d0c70211cba7fe51465e0f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 532d4b56317b3ea9ca613be3dc6d747a |
| SHA1 | 450a04b4154fedac3b566b8f42606f6a4d16055b |
| SHA256 | 3eed87e06a32d85a2b6ca7157da75b64d9c566edf0ba0354f5d44b09ce476c30 |
| SHA512 | 5d76eb6ff87efdca2bc54ca3a99125a84f2c330c1163ad1c9788ef2d64a279e777ac28020b0a298affe4d035fd3c329b6cece0b788a39047251da8a6c1de7e7f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3ffd13c1e1cd9778266f518f28ca9cb3 |
| SHA1 | 54981eabc7ac705140d5b3c924a1dd7e79e16fd0 |
| SHA256 | 0b0d1afd196998af59ef62c9a2cf43579a2ca8f775487560e1f4d909c4b91e73 |
| SHA512 | 696bfd034841d19b55fba870d7d3857a27d4b0e48190a00bf81e402ef9b75a62d4722fd1795fe93c92d816de78efd3e5aadb0151b203891c57eb9f857803a51c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f0f586b005607ffc2b8688f12ec925c2 |
| SHA1 | 98d5873c104c84aaf51d938c4373214c216e73d3 |
| SHA256 | 3ee0f8625797a347a7affbd23ede009c29203d6610cb1ae2baf50ba27b903011 |
| SHA512 | af63895a2c8bd3f9e45d87875ddeb30db8a1bc7f1ce18fcd4b99d1882c16448589d7a5c27fea9056c15f1ff7568d804c22047e5c08a0277b6ae87c36db2881e7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6c4174d895ecc03b2bb7dcada3f7fb4c |
| SHA1 | 35948f9b264d165a2bc7a162cbc50ae9ec0cb41d |
| SHA256 | 14a9acdf2fdd04e6de31bbb37258bb554514d6ac1b1be94412932faf7ec1dfde |
| SHA512 | e4d3bb26f240fc4dbc5a1f51742ab60f9d339bc3425e21947ab92928e93be50b2d73a47537d523098c1e13db4880fab087498c9d799e620b8112d3d480e99b1c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 826b4ada70624631081321fbb3aeefba |
| SHA1 | bb04fc817d625b488f2e4078021ec7deeb22de89 |
| SHA256 | 2290f0e18791426add66669398a37f8eb041f3db1a04ea0ab2e8ac7f5c629b62 |
| SHA512 | 60af3483729b9f906aff66e5ebeb3f6ff7ce78749af7140c36c7fecc024eb386eb53c1fdfba236c2fdaf3959d20bab503caf583facb2154683feff2af366c8c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dd396bb546c2d940a144a06ecd7512c6 |
| SHA1 | a362d784e749026a1ef24fa8bd9d63fff2daa3f0 |
| SHA256 | 10c67c57546101f015ed90c93a146ba40f55c54b536d4a2d20a51b0bc9ee043f |
| SHA512 | 5398628e4c48d7c6bc1fe026b4af39591b7ff00f05b2983fd8eca97f84d60dc5cbd20d706db8ab35ce5eebd2d302718b5d7d3d05f96937b5d89fa3615c374169 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1c2b8939b3a5d94e2f4b5387510e3c1e |
| SHA1 | a8b7fdbdbcab624e23a483f1659bda94e785e52f |
| SHA256 | f2386bcacd878f25ab0fc5b44bf7ddcc2faf10453bf9936ffbe7d5a8fbb4cca9 |
| SHA512 | 9080804d5bab8342879164fb7bed84b8141e95320425ede8e759d52e590f67fe4ca19e5ab2ab4125d449477735679691a0e7f44c1a87ea58d4668f63d72546dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ab7bf7bea1963eb52cda0fb095ee65da |
| SHA1 | 5e5348217acc40e9e3ab39bd98ec8358d97b1f10 |
| SHA256 | 3fc0d5bb7843310e887c4586f193d4284ea9d5d9e3069f82f58db0c4fbb5a886 |
| SHA512 | 12156d2ed138b490c8cff0357bca6a14012c57c66ad4bbb56fa67dba883dba6b6524a53430b1fc07ff6e73d244924ddf9c89f2a7e94caa045ce0de5cc59acef3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 37fd4fb1a7abf5423f8638609482a7e2 |
| SHA1 | c94800e286fecf6d858b39e6e0410fd6657ea2ba |
| SHA256 | b305dd40129578918649835fac9cf1fa3bfdf9ae02e7fe4b0fff345bf1d7bae2 |
| SHA512 | bbccad41246cff42a7b6753c1ef2cf08604f7d6043ab7b738ab1b064c4b89903b13b97a58b7045421af0cc9aa264f1bfd3e5fa6b7c7ab5b62bff9b4b111c493d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1e469aca9360c7e9d4e79f75810bcb4d |
| SHA1 | 6cf1fd4ce96b789190258453525e0121a5485829 |
| SHA256 | 0f69a385348f167ad71fd4bf948eab7aabfc6989cadb3139252ef5dd52f1b3bf |
| SHA512 | 5168079c7ece1c35c67c0af8424d220303802b2018e0adc169aa142e4c96b3c6851bb32aa0424e0d198c357971a4c94e96b8ed3813c541d4263b5b9723e49158 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 62af9937d145d58c096938f8ab8f608f |
| SHA1 | a108917a92240d1943e2cca77d73ba76b5f9c77a |
| SHA256 | d254896452d5c3829161686b17a1bea45900445bba337889362e0e5d2198b191 |
| SHA512 | 335f6ef840cac91f700bb0f6e3117026097ff1415956354244ef912b0e633490e3fc0739c951169ea726e99309767a8c4fe7fc6bc42e08a542e38a2503ce7730 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9760446d4a4c87a595efc1339618e391 |
| SHA1 | 1e9737ad2f3dc6f4cb6d0ca1c1895b2ffb48ce2c |
| SHA256 | 6c5e21ad3c6c3de8682d978df84b481d5bbf22e236fd71bed2b4d3b5663b6cae |
| SHA512 | 0993a1a9ee0cbd1e262491dbc6f29bd95ead5f0bfcabdc5d227d9585c1ee62c106fba42c0ff05108bd64f0a808f03232f3374116dbc2f342ff62f04a0d4d97b5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 236c707b3271a6520518f747bb5fcdf4 |
| SHA1 | f887375b27b1d5180ea058d676341d81e4c2cf48 |
| SHA256 | 009a3807daf5b8d19d237b6ab92fe85a02795f78bcf1a65ca40e9929852a1de8 |
| SHA512 | 9079398149df86cc20a25342f876c93f13b10f1ef56a19db9d42673c03fa12fb0db272feca3d8fcd6b603bb1fc6f60b0186969c679ec27c625dec733d7e72f9e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 93648c83c2bc8b63afe3eb2c21ea22b8 |
| SHA1 | 5b50948331c558b756b5f8c5c83130148c33c838 |
| SHA256 | 21579e07158fe9e5e542255d686662fb564ab9c6f689a812746b1f9b8ba26848 |
| SHA512 | a9872984fd3c83113780d68757d726ec7af93df14912ffe5553f82cd949af493cf04cc7da2ae92fed8dcbbe6b71c76961b11f4c79ff431cb562254c40bacb4b0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c673e022a109a96201aba83f0dbe5770 |
| SHA1 | 92ae2fc6e39ff0d62150bbb91901c44713493e39 |
| SHA256 | a059571470935423b9b9f3ce64c384c619f00fa72cc9fcdbf0e2d459da2e25f9 |
| SHA512 | 1a469cd63fea1f26f3cffeeac52c9535bfbf80c6fe71dca9cccad4709485ec0237a2c3258d7ffa5f0a4f01a7210c13ae733ca66e230f9363f2c3af885406c537 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8f62b7b2fdc0949fd617164fbc59198f |
| SHA1 | f60eb78d333328f530bb99ab3379a2a57bd0acba |
| SHA256 | c96a0a8a96f119867e409822b90d7ba7ae7153aab43a8323fceb9a70ddca44bd |
| SHA512 | d960bbc21d1a51d3f6be59f9300c9261acdb74c12eeec9c0700896657676265cf77dde4acab33b87083f18de1707ab9fa73a86719444678dde630574bc1c0387 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3916a18a453fa5b9a9410dffe4d2ae07 |
| SHA1 | 901623b999fb0abf75d905e4e4340c66ebb784ff |
| SHA256 | 732227fefc2d7bb5a2b7227396c27adeb7e482857884501769cf430cf0b8ee3d |
| SHA512 | 3934d436876c5161d95c94a5770750929bec57a244ff534ca4fcde2ba5e9b7856868ff6566bfd45f1934219da755106dc60009e58e26c1b2fe3990599823ebdd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 914ac7a1fdc821fa38eb9b60895ab134 |
| SHA1 | c7f1b364b621d4edeccb1c8bc17f2b73a4d479ab |
| SHA256 | 7040db690b57789277f64767ea6ff79145f862cf9c1da0ad4be7d8b4636ec268 |
| SHA512 | 70555b6127ad3d01e786ab5feac721b51780d7af03111b028f073db1fca4197a98d7280037640d9b7dfe413e71c2986c32239b47ac0a7554580c23d4e2d232e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d2e64131ea0dde9d88a34525fa9c9175 |
| SHA1 | 0bef1a8333a6882f918d66a0052a4b74bf67ee35 |
| SHA256 | 1a4700c2028c8291546f72400707f5d26d8a3953bcd4b955cf3e093f841fd69d |
| SHA512 | b602b1e56f785ee35cb563e7afafc9d6a66843b2e877b46f9ea86e1d8b64b9b4cc15a5cee28e11c3842ce44b6eec0a2c508cee3862cc2a6e8b5a08b11ccff7f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c14b70991b0c587e3a32c855b754b012 |
| SHA1 | 3dfd01cfa73070363e0a06f18a66f213286c1710 |
| SHA256 | 4a3403a4866182346e9e4bafcc86b444aad63a163523eb1e40d2ed43cbbbbbb9 |
| SHA512 | 65340d4ff32560ba4d537f6f8a3ba95e1286cf660ec8d3f6f6c2b3599e06ba236e427f90291176f5508042ff90ee04b62ee63583bd54f3e4786fbd79395569cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0a0f8864961ce53016e678280ecaae58 |
| SHA1 | d353e1e844845974e5465206b8df4da1118786f3 |
| SHA256 | 5c8610a90d8ffe1f4e5519d3816f0d051d1b9b616eab507e1f5555c092281d1c |
| SHA512 | 35be68c376e0673d03081ceac14a37c34d984fcc231558071b6589ced2bbc504648386008a6006b8ec3afaa04b79d4a1bdc0d45eb2aa760ec26afb603c31e413 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4789a5b18b8b33db8a5785fefe3dc047 |
| SHA1 | 28e24d590d3472662cee0646da949dbd7de28816 |
| SHA256 | 6bd7eff5e13670fa3b2b3910694b50f6023ed66c98ad7458a9a1f2de5b17a3c8 |
| SHA512 | b89c6d747a2e2cf60cfdaff97ca1c0a9aacb984afe441d61a7e8ebcb766713c344c896bf6059bdb66b36e641d9d2a968811ae6c3457f295d6dacbbffb931b1c2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bfb54070c442f3ffde002e6a6e061abb |
| SHA1 | 8cab7afe062a61265661160f2db484290c8a5752 |
| SHA256 | fe094b2424bfd2b8acbf5610a03ca54cdf031334204d0ced90255560a110ed76 |
| SHA512 | 765b639960beb81c43984a4325aef41269d41e9da36228e42f7b24e98ba1c2e5530589b70f8e77c4ed60cd4c2df9100efab2c0b44928f353848ad56ac61f0152 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c7aeaa17e1af472a1a6c84b34775fca3 |
| SHA1 | 8b4de19e130a70681f0ab23f606850c6f2bc5a06 |
| SHA256 | a55e9ef9886c13ec2a9e2d5c02298664650adbc8182b8b3f9e24fa845e10be2f |
| SHA512 | 04873dd08d2cc529cbf463b88e59b3c4e014664f0434635e10d81041fa3c0067e07d16a5c88f5e708402656cd38531004aa2a5b05fa40b72e7fac0fe0ec48e1f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 181fcf2a44965d560e3a9945236aeeee |
| SHA1 | 7973f84fef3e49e1298e2053e1bef050fd97bf69 |
| SHA256 | 3e1ef3ca2044222983e46edf9d05be92a9c8e9690d02044d50d49376e42f3850 |
| SHA512 | aed16a8a4285042708d776883fc310a2edcf8d45bf53dd24a8e60ec3c112decfd27a9172108a5b4fa922484535057f7f7e41c8089a2471ad6c1b2b2624cf64fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fe977faf505d0e88f5e5f6ab0a4ebf1b |
| SHA1 | 1af4561d9d7891edd20449a7fd4cbce27b75f47c |
| SHA256 | 8f805fa93d0f3e4065abb8c251bf3e72463c081ce90584ac0e265a9bec39e5ff |
| SHA512 | f03aaa30c59da180290232b2dd98e483fac2d1a9f9ae90581f8c829e82c5c17bf151919481024e8aa384c022d65968a7194a224e666be9cf081c14bc23bd9294 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ce480fd8ef7c25213eb21ba9115a0749 |
| SHA1 | 31c216ab6b52a921e6f952811be751e5512ee246 |
| SHA256 | b2c89d63aee7276c823e3be6b7ae54600e75b72be16ce7460b1cccff8926e163 |
| SHA512 | a147a01bc294c735a39e5af658330f86eef9dbb127108ad31ebfe2908ac91f27b9ad7313ce29d9b86ba63040b07ee64be2467ccccff27ede7f6d74a84c562ed0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 74eb503060e12c1f4e1eb5e5f680af39 |
| SHA1 | 17533f1669d8e7b4755750d0334e88fbb2ee9c84 |
| SHA256 | 9e27b911a35da2534cc008fafbce697929f7c291e0b82ef057a02073b7d2f18d |
| SHA512 | 65bead936461c3712e9961ee6ee1205275fef870367e660c09f114e44a350c7c78106352607a9dfe6c13276dcdeb441a135ba17f1cdad458d1fe0536b96f075b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cd15125bd0ba10c91e15fba9381109b2 |
| SHA1 | 508f71d07da8b1619f5a850bd4ffce7a16a180ba |
| SHA256 | e155bf6b3ca3b7cfac105d418bb9bf9f2dc28974b71324e926a1b486e11f4944 |
| SHA512 | 6bba4de8fbde6825cb55bcbd7dfc4673bce47375aa63ea009ef131b4c3f40e15b4ebdb412e46d68769460456af99226052f99aa08a46fac119cae0bef68b5aa7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 17de3d84cabce20809dddb5ebd3ae340 |
| SHA1 | 20f387634f998aeba66e3ceccf936e3cb8006054 |
| SHA256 | 3df8b6cfcd2832feb5c544f436ecab28062ccae3348d78906cc2596cb7a6d1fa |
| SHA512 | 52f9e447f3aaa1ddb1e265fd4a30ac1988b4ca4bee1ccb64c763be648d8c0b90e9f602022290c77590f72345ea470e1fac858ab261324408c776876cfe50e259 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 193fde45780f07ff9a16e041dfbf8265 |
| SHA1 | c97b04e96c756614440a37d9a986ca60f0b83644 |
| SHA256 | ff56106eb76c258c74f06aea2c7eed3785f8c2bd84518e10eae75c2928ec6230 |
| SHA512 | 617c86af1aec8aafcd3e23fe4b27f17f52e87de022c3e5e95459dd09a92d3cfcc238dca5f2b74d9aac2e8ee3aad4cb0d2da8431cd0e17ca2fcb490befe2c3ac1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 95a560bc07ff2bdba406bb374d818b94 |
| SHA1 | b7db1b0cc6fcf3d3ed115919739a538dc9bacf04 |
| SHA256 | e5d17bfbaa98a482fb8a398466efc261ec181451979910591dd5df63f4cab7f1 |
| SHA512 | 66e14f4c734be989cf4cc2c966d0aa760df858c87fbb02dee8830603a3431051affb1ba59c502098bf956d9285a02ef4b2de3d9b6ec686354336fee2efa9315f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 29bc1db8811e97115179f7f95616b245 |
| SHA1 | 84e09f0a09be7ccca0b3349fd50ef35a6cad65ac |
| SHA256 | 812e550d788270fd9dfefb0175818b0b83aefdbc0a04720a483fe5bb76c5c472 |
| SHA512 | 1426671f5a202490844929d409b6543c11b83f84ce97f037e153de5f17a99a28ef99466a2a0d6ba2e49f1ec74040787b15247ce054b38faa148353c30a298464 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0b7bc5cfad8ca11833c59b33d0682a0f |
| SHA1 | 5d5144240c1af4a34f00c7d2e84825e2e57a869f |
| SHA256 | 22b506de7e189301c0e5a132d590502e6ba590c769104eb2bb7d3d51bb3bde80 |
| SHA512 | 4f1a9ea9bb5d5e1dd4fd14af0af008aee1cd1f442f892d29603431aa6859f315579dac84c82499ed492589888ec0069b160a6b7a232c2bd8bfb1739a559463cf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5295285ef461866ccc44c247239e74ae |
| SHA1 | 073c80ac1d9cb344ec869db3f83bff14aca8923d |
| SHA256 | 728c484215f93379a5041610fd20f0a7821079514daa1f306e333caac9ba9996 |
| SHA512 | 33232c43f8323d674756cf172050eee54e622a3cbc7d16afe8eed7f5863e1d8aa496ab17318fd488d3c3e497305f26235558a4992d7e296b481c0958e31ece40 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3a009d128b8ed608d4a1ad99241e086a |
| SHA1 | 489e743467be61d98d19887650b238f1651686b4 |
| SHA256 | 143547f0b611256e25bdcf716ac28db7407b674128816b35bcacd58d9c9c88f8 |
| SHA512 | 5b4788e3d2c9fe647c6d9796aa295a3c1293f5c3cd3bed4d9988ddfbc9ea9e82f8d9587a4424e6abbbaa3cd12a0483fb1cae2f576a563387d7197ce94d763791 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8aadb5c9ccba9314fa0cb9c392fba8ac |
| SHA1 | fa44557547e800f6c6f220ba81d0d33b2bb6692a |
| SHA256 | f242aa557f2341b365aeaf5553f4a9b2e19705339357666d2f8dee7e48b252f2 |
| SHA512 | 12de6d2d2b04631bcc582ca0164def823d2350f64ef43db4291163d9ee5904ff0d92a39e871d3be9260360736fd9b149966efd3597bfa6fdd1b06688c7f3cb00 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d6033cae2ed9bd71413e3d3e48148120 |
| SHA1 | 6e95b667de718725ce78f664f34196f6e03c8ffe |
| SHA256 | 324865c3819df03013030192c2181088f55a19cf1cabda1b9e8417c951a32630 |
| SHA512 | 66ed3e37ca59000356e7210db1cce598a40ed47def1f253610adb12d5e79f4922a4fec345c321dcd448a16dbec06a4e5ffa1fd42f8c463fc9a5b191a18ee5719 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c5619407cc8417549de92033ce5b729a |
| SHA1 | dd457a998d8d7a2ce79c41016c68dcd1ed55118f |
| SHA256 | d2316731e53577e5108ba32a78e370280107309554695f8460be473dd836f1a1 |
| SHA512 | e2959849de71caa688742814b1fb860c30e91c212dfedfff2c4dff5d9f2ecdab2b8453cacae34b2f93c6c8c06a4f0e399c792c3f89c3ae019e698ad4d3bab456 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 757269771510fdbde3a6e1168c7a5d23 |
| SHA1 | eb9834db48dadb8f94a2405735f8e2acc7c9df80 |
| SHA256 | 23515345d715cec442e428f6679f5107abafd15f069342b9f69fa6f0338672e0 |
| SHA512 | 5e7eb81418936ad12d518b34e959f105d8aa397de162ca3143817bb24098d921b4017eb44af1ee87871ecfd1bc082f502fc6566d09dee07aa9e7626b94b1fce9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6a04459135fc8cb22ac6359887d0da32 |
| SHA1 | fe8345350406b24d4e30c6b738f576e8350741b1 |
| SHA256 | 1facb465e7384b044e9c3beeaed58976cee19a824333e4f737312922d028f349 |
| SHA512 | 048589661152b4d6d2b80857c82e87ca5cdc6a02f0a481c9b97324cc537b9e3f59b9b7f127bace26d325fe3c1f443fed31e830b9cc0041578bd1d0412b6f88ce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d9cc256d77f99eab0f28ed78c5da475a |
| SHA1 | 960fb8f5922bdf86a2b89c6e0e98f7338aa2686a |
| SHA256 | 304aa8432aa0b32524b5631afcf4f4660d92471cce2bacaf2b93c9b2f6b45a5e |
| SHA512 | ce31d8cb576075d5d368164332206ac4f99c2e12d6ca25a5e5abfad43a86c307df2891868af9a930112f19e9bdc64898cbc0f8deea463fbcd093efb9ed944d9e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8f6c4521f6f1d0643e61f48d5480f758 |
| SHA1 | 8ab7a543b2530d660517bbca23b71d22de7e13be |
| SHA256 | 1d089c156cf692dae9d2d1138c17b68f455ccbae4a2243c3c2dace267c89c5d1 |
| SHA512 | e8d1a1bdbffd118074148abed2d4409bab8225ddb5fdb5f631f970c7c1d1793d33dcefc7a38687a291e79233b6eb97b5068b5273240aee021fc8e7f53495f65a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f1aa53fb4e16fc2633fe71aa17b3a93a |
| SHA1 | 55e9708f4113ad06a6cff60a97020551a6db97f1 |
| SHA256 | 7d79e5375eb26d7582911fff4805b81ed6769d469508394a956437112378db03 |
| SHA512 | b51300ad2f4c7516a1d289a73cc32aed30fd12fee4a9143aefcb58586ed03fbbd0e520f51abe9a146c798dbdd010feebaaa8be52f38c1f8e0b448f8876602078 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4e128b97ab01fae05bda45006c86bf8e |
| SHA1 | 8a513ca2bea58b86a5e50dff4ec0ec141f5fd53b |
| SHA256 | 2aebe15a3f4bc40ad5d7079dfb586453782aa07a472add2cd9b294bf42b8f10b |
| SHA512 | aa534cdf83144f86f413026f93e848b9f42ee6f1f9b4c8da163ed94a63218ad6338415b4137e6ea1a85eeaaac2e61ac0f4d48f08c242840ac8989922152df122 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8893648ef5db100ebd30c1d0dd0e911f |
| SHA1 | ddd0bae1e58a4e41c9530828b3a9aef1a562f980 |
| SHA256 | 2850f77dd985724b9d867c8ec3c28aba7db8a2aef7a6bc11ce92e5007372c241 |
| SHA512 | 1c6c1136d9221abaccd973ca02e48f9e1aa83010dd257c6cc2030fe5bf9941d12333686e07c0bf76909f13065fbc8bc887b6f17bd7c37aa8b3519189b7b9dd17 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b4b9dcc4a9fd284f9e1b5dbd641c7e32 |
| SHA1 | 9e1a0ed1538537561db796030f8543ae4289451e |
| SHA256 | de09b8ebcbe19d6a1797a3e4bc474a89c23492aa23a590462a52e72dda7e627f |
| SHA512 | 584c908c4c5275b37cf4a1638f88535e0ada56853772d5647413c9619bf42ec9fd9a2c85c3b760330fa25dda86101f023f983ac57a520b83a8531fec7f3e8dc5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1e1ea9123b469361514287858b13473c |
| SHA1 | e2f3a0121e2294fa0716047748e6713da7839f3e |
| SHA256 | 0e3427a2ce73418df09e05133b9a8b1c19d12e0d9c72e75036f37fa427e9b609 |
| SHA512 | 8d95bbf38257fb14bc5e70ce21b858d4302d80bffc1db7200590c1a080325f61fc953e5bad9f5892512eb989d35abd336b267d875e0a1d2b017952c03f8de81c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | eea219b5edb7ac5e43e5bd638e466a04 |
| SHA1 | 5722db04b1ccc98594c6bca12fe498fdf471cc0f |
| SHA256 | 275c4c72729aad7f470706ad71a378515306a9f980dc0f59484fa01f6a4c562d |
| SHA512 | 980c1cacb221b43fd977f0f1f8db1851ca0a1f073e6d26b40e49908790a80de1f62d7f3eb84ee5fbc7674574f4e4df0e4991adefd85ca76dd13a4dbb09c23083 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3a9f0a4bbaf39cb8c51f131c869bf412 |
| SHA1 | 40060122e75521451753facb63a4df05b3256875 |
| SHA256 | 9084cf7182de3f0aebfdd0acf74e83da46406993e1cee416ed1b0d5d4a73d1d0 |
| SHA512 | 11a5d6667e7b8706924a3323b4c6a1a8d124a5dc5ba69808a62b3b9e443c426984f9252987482f262f640fc6482ad2a3c9e5ea3d7cded506e8a8ff39abc3e71e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 484892c1c9bbfaa3290be885cdd8f241 |
| SHA1 | 873116033504b9598ae383d2f7000216a90fcc0a |
| SHA256 | 72ec804816125fb2486bed86c9bb836414c09cb0ee445950919e0e7e8b7dcf46 |
| SHA512 | 92867db55059987c8425e4d4ce81a8326cdd3ebd1408ceca4eef7919a58195f7649aa31f31df4965a2046522719d707b3d0e5170781aedf85fffe97bd674063b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 146c4e103b5b1ba4e015763eb1545f9f |
| SHA1 | 6027a830ee8622acfb8ee00f28253e1e97c98137 |
| SHA256 | b21783053d918803928910a79e92dfcd8d1f0e8b1374cfabb03733e79bdc859f |
| SHA512 | 2326da79cdd94b47a9258b48b51305f26d24bbfe97d3060fb8c742bfa13350df92a3b86ef621e74f0c8030cafc3407c8b9039ccfa7388fbf0880f5870634a917 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f75b8a5d5105643087e451f5e50c15d9 |
| SHA1 | 2ca13192e6ce67a2c81245fb8777f650aae74f75 |
| SHA256 | a83d20e3423384e5304036e1563dc4b51966595c2f98af235d0ba8abd3dd20f9 |
| SHA512 | 099528f305dd5f8837a5dacafcf5b72d7f50cc11d1208391439f6f088074e3b2469133e4aac93f72c278bee0e0081e190908ee1a9165fd9d2df0751c9108ebb9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9129742ab8e3ddde47e957cd51065440 |
| SHA1 | 50a57b808a8b309f786a87880700981edc753444 |
| SHA256 | 1f4c9d92118a5abb0a86aad407ee4f3319341aafc578b5803768c56e26793381 |
| SHA512 | 19c49cfd507866f07e9bb096a5a3811b6be060a3a7e087a80a6caa29e89f72310b3e8a596a368ff9d968cc0cf9c9ca15c242b0db72af469ac46860434ca59883 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ab8f881700a697971d59dd718b7fd612 |
| SHA1 | 3337c3d6c6fc0be2f180ac3a36c73aec04b020eb |
| SHA256 | f536769a9b627343b3b69cc3b913b544807e298f10f14d26197cf86217bb36dd |
| SHA512 | aa3d5b53147e1aa94685a097726bc246c598c3281ef7f4894b94e022dd22d1cb4d29736b011ff66d79ae9cbd3ebddf82c3c90ed4b8105af59ca0bfef9d89bc7c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f34e1f620b14e747a376b7322f7f32ab |
| SHA1 | 9d16f2bc6a9f882c85e69d3658d2e1555c46cfe0 |
| SHA256 | ae95943d23bb5b8502b203419487ba871cc17d21ca05fd9393774dbac89bcda7 |
| SHA512 | 23dcb6b7abf241c9e94125ce9fc1a29c881fd14489f76a0639e7ad6d23465b5214dc762e5d03810f5b2a0297396019f994408bdf3c32c5fd135209b5516aaded |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cfafc032f4c5b68917ac611c6836c9e9 |
| SHA1 | 5ce086da6ba25a7ed24159ae31133458625baba2 |
| SHA256 | 1675545ea8654d2a385183dce6144e9a4638a57da4157531726bfb5b913b2340 |
| SHA512 | f427cd597449aa8d047459a6502c6549275e9f1d70321a277d9e769de67385686c807e7ae593785d73a342f590b506607707101d9de00e423d29416c273662d3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1ec6d46678551b2fd31641b5d62c17a6 |
| SHA1 | 8bfa844bd8156a3f85329d9869d23c74a87af9de |
| SHA256 | 1739a2f7dfd627396f40ef0f6f22ea20f16bce307dc697e1f5ea1699b52081e7 |
| SHA512 | b78d6af6ef61e3514147349602cba0a5a8edf860e43cf875326e285254fdce1c5e33966d843981e20e92731f0063134e85abba49ff3cd33d1e0bcaa69d13338b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e834ac4598901990fde1d88bffc10e3d |
| SHA1 | 90f1b47cc9fc0183224e125ba231ad632d1866ca |
| SHA256 | 12555cb10c82147f9ce02900baa1c74ff505bb3b110ad1ac867a3c9ca4c06e44 |
| SHA512 | 303aa59b457f9c725bc59d377a129fdcfda7a6bdfff22a8825dfa87b8b02810eae9878978587f3ee005f296ffaba42481ec02970166a54b96d3dfe19ee84eae1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 99edd2d58037684f56ca7d776944b3bc |
| SHA1 | 7dac8b1e8006e16c85c901fec1971c5dbf01781c |
| SHA256 | 62b5db31175c108c1f1d1876311f6a45d1fa453fc5f793ea2fcb5e856374020f |
| SHA512 | 2e8ee0058c92d958e0002d0fdde533aabdbf5f718205009e4e474c11d9f93eb70de4fd0413cf62fab905acc66075b8cb3bbe907a65c2fc6a423c34d036a9cca7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c6c67562b0becc420497fccb9cc977e0 |
| SHA1 | a707d6f876ebad003bdcc24f8b7f63d90c30dbb6 |
| SHA256 | e9066215dc613aeb4f0ef44ee5981bcc5dc701ba5f807a7d625ad4bed50fb29c |
| SHA512 | 38d5b030a0c95e9850cee900eb606bcac60d51bac34044bc91292d631fbc43fa89af9268e38b53357a380ca68fee294f7aa23fa778c81e38ee3bbcc75eb828f5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 58c6575e212b71056d0b65081cf14705 |
| SHA1 | 390611139f9aa718b9ff88628d87ee8418e7d462 |
| SHA256 | 04641674f4254554c38732d94fb79d4c6a0ea0cbfec93c8d02a5e3ed649f3d1c |
| SHA512 | e586136219e3cec6a45aa32a19face26fc25a6d7b09fbfcaf2d36f717e10c5d2edbd2867ca140be9efb794078869edb085fbf20cbb40f512c8dfe6a2674b47c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1644c7e8def71168d646f3b53358dc16 |
| SHA1 | 0a99903a002f4435e592ba05fc3b2ed7055b0b23 |
| SHA256 | 2102652fb526a4fa18216a07a042162f41063bcfbf9964266370fb5bc1b2b5ac |
| SHA512 | c28282ecaa7980613727476322f8ec13fb08ca061faa9975ee402b115064dfa65743673ee82343077aea7c4ea1bd022990fe1bc9a516e96035f7f4a55ac1027c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 863d6467ad565e6c8bb0b24c2356b6bf |
| SHA1 | b454bce7847b49678a18f277f6f5f071788b6657 |
| SHA256 | 251723a741156dcb4bafcbe4e1e1ceb08d3c6e8146e87ed48fc2ff54c6079fab |
| SHA512 | c45979599f2ef1e160a21e56f17eb14d00c7971a0d47cdfb79de0263fa5e51d86e3b8c968e12962eada3e41fd5265990bc332997e712a2af67f8d0b0b3fe3b9f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4dce7f285ac8bb3a623879a3927b2d87 |
| SHA1 | c15ce78e4e61c1e06f716d8809578c73d64d06c2 |
| SHA256 | 22e80d07b41fa0ff49042332b9104879bafca4115a4cb844aeb47233866b8b3d |
| SHA512 | fbc191faedc138da1e352ad5920a327e0ca4723fe2d0b336dbc43ee241152cfc1f0263f18e981fcde64d503a51467282d23b954096829f147858949ce91cf1e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cd2ae1a553d5617b1170dc47ad08366d |
| SHA1 | 4a72486d7874025e17db2fb90162a6d728fe1227 |
| SHA256 | fcdcf6806a117e90197cb1f81119420ec072933ec8eddd461afe1cd06318953d |
| SHA512 | 0c95ce03344a0dbd8c4c24c43fe56da5f676e4fdd186245757089405d6a6fe9724dd916e64e6527b25932d219eccce1db19e21e2f1e13752e0f105454822d071 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | af97e0001dcc9334867d50b1a535c7ac |
| SHA1 | 08ca7268f819decb15a354e5a9a8875c97323c26 |
| SHA256 | 1dac740b4648ab84b541472991e3a1e8f877c2024c2eac592e5a4426edd30ba5 |
| SHA512 | 042fbfefa0ee0506b5c9e5a2397dbf441d45d8b1de49e5b34df59f308c11e06435d016fb1eb9e8de24537b7150b80f43d23eecd0c0e31704810fadb36100a78c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 503253c49c7f4aacec67ed444dfb27e0 |
| SHA1 | 5b106fa933b6c03c444538f494e9f49320885ab8 |
| SHA256 | c67ac97e0f146c3e955b46b79c1c278ad4fa98a0e0e3b4d7cfaae75b4db3a67b |
| SHA512 | a818fb2c72768eba01d85f1366c37894b3f370f1f2e9da83d71d78f0cfb32530c192994087a4a9c7f0359155e8dd5de2bd0d36a96f844f6495591904097d1009 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dd95d1b27b2effab0175fdb23e3b0951 |
| SHA1 | 0bbdd59749f550e922c83152c13c6df843b1fdaf |
| SHA256 | b86d5c47687f4502ab4c163b4d76d7b38a2ac69a24077f78c624d1e053679bd7 |
| SHA512 | e98b305d62643841e6781e8254b7f977413f6b415ddc77b574a759f7595fdbf287dc2d84850906d86eeca4c08d020942f87327aea7b6d770a807fae4920f8141 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2ecd1c3f89d487e1c39169e1ad2b8ef5 |
| SHA1 | f640b640e95bbc6ce712fad490c7072a27a43cbc |
| SHA256 | b571c15532de1b1911e60cd27523070451529eb888391a45ad4ab21961a23095 |
| SHA512 | 486dbe72d285bd6b98dd6634ae691b855d53a6b961a44aaf146db024bf876aa43e1af0e606e10dd49f49c23a20ef69adaade26c2cd9044d9a1d372cac5d7a2c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 293107cf2efd46aa3eea64c0058e7955 |
| SHA1 | fb85610797e7e54bb4efd2fea895361089e9c9f0 |
| SHA256 | 17e78795df713a1b21fa26bb974523b62a4d953069ce286cdfd03096e22b4085 |
| SHA512 | 5a7544b14a05740cdb0ab7a3ee1ffecac10462de5f47e0f79f11fbd72e348cf05022515ba6e26e65cf5e64914b8e5d55573eb2c8fea0ae186c15b730c1760e18 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8e902c2b4fdef7615a0d5bcc08f2abae |
| SHA1 | 3b5f63b7a2741e072f066a89c2bab134cdb0ef97 |
| SHA256 | 44cabb93905a950417a1e7549afe28c6a2ee73523af37d543339eb4bb53dcb22 |
| SHA512 | dff49b85bc35a5a28a219a5e503ae38a4d8d5e3c340fe0ef88d82bda7d22ec4ca2803c332e63837f208a8ec3df2c22533b0d44f0a13f9b002f1d8be0f379f08a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3a5631915afc938d7fdede103b72e1b4 |
| SHA1 | f89c0aa95ffd6f0f0bf642420972155c0b174f89 |
| SHA256 | cc5a86f66ab03f8a420241626236941f7e5ce921bc75ae385eed4b1b9a9a0c5c |
| SHA512 | d653899099284cf4922239bc28923ab052c01942207ae316219e0077a518718c3809022e01dd78bd6290b60f257a41f5a21bb397d22a8f3cbafc56b9c6e85a1f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8f3c68fdbdc2d5936d145687d29596b2 |
| SHA1 | c81ed59b99370b33cf5da23ab287398e7f786229 |
| SHA256 | e1c1a9c8c8568dd7b2a1b941c43610ca31f12be852cbf09282598ff8563b6b59 |
| SHA512 | 991fee4caac927f2f49c7e129d632a4baf566a13e64b7854d7a94453663fdb00c38317b3b2ab12de7168472570e6c46982049aea37418b56683d81d57d2a6bfd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 879d1b838148783a7aaae2b1daf4d715 |
| SHA1 | 9d41e3429fba5b99ad118de5c00276f01e24af81 |
| SHA256 | 32943af86ad70b24399d00c96b310b7c67cd89b42968c0eab88e46890d094db0 |
| SHA512 | e5f2b12eee5be092a2d56306d1fd53d2db3b8bcad94707c34cdc6385ece245e6e567ae024e9d9e6dbc6228159d005ea0e04e07808dd98c866a8dbf54155c64ec |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b5fa59e16ff7d34803c33fe345875222 |
| SHA1 | e52f1bee03c91f0a882457036172a5c3db761175 |
| SHA256 | 9dde515e7cfe22fea0b20c4c240b6d94175e8af9fd8e5420ede38dfd7c8d9d5b |
| SHA512 | c027fd2310f889223691ce4b19ad72240252dee702659cb1b1116c6ed236f4075558a6c75a44d17a8c683016e86742d86c618150a84c4f45fe8dfd0f7d0855d6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b14607be1e22b598593d45c6943fc36d |
| SHA1 | 93f44e416174f76f25bcb2b95b880c7646307444 |
| SHA256 | dd2ec64c6f66490ce372f88912420115e61bcea0ab6ad409ac742b6876bed920 |
| SHA512 | a5edf4dbc9d6b0fbd511b2dea5c3aa9e88a14fd2ef48f69edb549acd3e107a160c6501ae6fbeb481ac005bc15233750c2c615ee7c28a580d19770f19b7b06282 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0b63a1766472c19aff247a03a11efafc |
| SHA1 | 7550d3095af89a4be6924d3c8f8d4e3b0bb4f2a5 |
| SHA256 | 628d04164c1fe357afe9559b87f7fbe0a5d53e26eb3eea776ec7ac0b798a15bf |
| SHA512 | a2414a3c8f0e6d5d2a5847b5cbf5e50e14fde98c09030a88ca49b3205e472a081141a0a5cf4746e4b2e06d7323141449758f64d6c0156b3a4652dbf8c2083c5f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | abdb0dad33552aaa0e97b569784f0825 |
| SHA1 | b47fcce9b5de184e6b352b0b05c5f4296ec4b680 |
| SHA256 | 8aff702d1424629a62cd6dc4345812a22e1efb8a89cf8de7aa5bd07e53d1022c |
| SHA512 | 10d32fc35269570da630bad8dc6b43aedee173f0bfcf8944b034efb649e300aec54c937ca13f61cbe0fad9513ff4052605038501387c1f7ebd745b04f30d2c67 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e7960e611c7d7da55d6bdb7877e00a98 |
| SHA1 | b93f13d0b0efab6b6e36cb0e6b9fe84c7b414e48 |
| SHA256 | bf3602203c1b1786caa2679ac174009fe9e493b572b5d3629897cd0f5aa00cc1 |
| SHA512 | eba86b30728dbc98d102da2e5c2a3c8245929ac9f4082ac53918d1b5ac9d55681951df2fcb96595268ad0e1f0fa9ae36b82eb630f8859afd9fdabf9af4f2eaa0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b151efed71a8fc2a78e84db86c0da1ea |
| SHA1 | d9792152d49a3f55d6f9d9b0321ed9371592b5dc |
| SHA256 | 6421abb6d314c6cb1f6a6a017947bb960499c294de4dd31bfcbbf5fa4a93e1a6 |
| SHA512 | 86b52d5dd86c5b7315142cd6b2e9fd4119d78eebc78c66a9077e76127ee3b82a2d2dced8b1107d4426e4a58a73ce8385a1cb772467489cc375a06fb16d9cb6d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 09c49ecc6f71abeb76c24e6eaa81a10c |
| SHA1 | d35bc9349b5c181fe3850284d36d41310a35b73a |
| SHA256 | 7af3a162c61e4ccf4c3f6f85856afa0d940d7da4befbe82eb07ccfaf524933dc |
| SHA512 | 2f95165c089a6eb86dddbd54d251272dbb12631323aa79c5e6e5e9bd95d75054caa18980c103016fb7d9757b9137cfdbbb0e292623c5056c8f340ef911258ce8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 27425c3c4e445666d9d2e7c09335c509 |
| SHA1 | 2a96e8bc1583a8a8f5f6c4e26ee2a06940c657c6 |
| SHA256 | 300d6fd6cd9eb527f0fbbaeb439b9a4943040b3fee69eb1a3b39896c8cfe7464 |
| SHA512 | 73cda212f434c956b4c7a53630040f3beabd97b8c9a4fc152acc3d475aeaa653e09b047933a73a6667b092c354ae9f83cc88a9c705dc35e2b46d90f55a3c48a4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | be9f7f9fd07c3c1db393871c3855b9a2 |
| SHA1 | bb4e193f9cfd3d15110f0fa12d7bd3bb104469bf |
| SHA256 | 39185103cef106f212b7f1f4d0d4978dc3f9e56a9ad48a380bfe0f8339872b25 |
| SHA512 | 7af218c7e166701678f056ec8d22a3a0a0f274ba75fcca1ede6306f5e757a53f63945967553f9ef0c183c9a09485db6d6764f34c0c1cdadcc032f719576b16ee |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 64e11d1af0021c01084ff66cf6c4246e |
| SHA1 | edd6aa21e3009238c26409148a05069983bca292 |
| SHA256 | 2cd42e52b5ba743edd7738a4f8a46c54ae67b2c25a0b3461d8b0652d7a32bc9f |
| SHA512 | 02fffb460f6132b642d8dc7510bc64b2f8899a08b8b33db654485caa501e3556bdf1e1cb40af9db15c4c3eb6cc1278342529d08d6475c2eddba0bf777398fca9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4c77cea707da5e64e49416068eb3c4c9 |
| SHA1 | ff09b7d5f8481f2a9e0be5d75a7b3118787ce5ca |
| SHA256 | 486517c143605ee8f0043e37781d9821ae74caf4ff65d7fb9cc1d2642b5ac122 |
| SHA512 | 6898d53414b8dcc7e8c96559eb81eff76b962274739fc2b0cf8ae9184adc8f0be5f164865c526e74d2f8382ac163d9196b1b31d3569429125505df67ce466e29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9a27839de252d4c4601b9105708e7563 |
| SHA1 | 066ebaf18dbddc33084720dabfa65a130c446013 |
| SHA256 | c2b43b35b18ee1be01152dd653db97b87e3fb8906a9f79758d1bc294637620b7 |
| SHA512 | 3b0a622a91edb3c977be276eb5da5c7cc0e56c27da1392dcd756eb9b64a3b4f646df315732da753290eea123b3966d81fe6bbf14a67037923a5e30fa111495da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | add6f6b8140e7d647cfe17d64209be2a |
| SHA1 | 9669a9a8db923fdeee95574ed03c020dc675837a |
| SHA256 | 668ea661f77701c52f0b4f2daaa42c9ad549c30e2605e24c09ddca38a7cb5537 |
| SHA512 | bfb3b912e3cca7dd4e3c2e719e4190e922c5b3f33abf78c739ba89d1ade85f8ac4689406604704daf8bf7e6f0ada057e954e3a77897c23e3615ad47dd0c8d977 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3331bf010af6c8c8c5b0cf6fc56aff3e |
| SHA1 | cce5915dd9fc978fce509fb27176dce0d0d764af |
| SHA256 | 2733fa2568c2b9337884bed971a69cc90dd31d970d8c7c5e9bb8398c0eaa393d |
| SHA512 | 6035a887f54117ae9fc8381946165bd2c8702f0650664fe83f4e05c100cee01ee04da7ec182db71f5869349473dab294822463791805cf162eba3d570521d454 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cafe93d8c21dd9b8a644b9f06bae372a |
| SHA1 | 22f2078af02436a05e54feff60de75600411dbd6 |
| SHA256 | b38a97418a5339f3e3bd5f075d5daa980274f237643ece872a34a18929d609b0 |
| SHA512 | b1b62a541180c567a1cfd78d4d092cbf26da16d7b2ef9c72e00badbfcd964463e62ed8f42e828b6c29d16486b4560c5cf19b47388a0b5171cd9983b3643b0ccb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d26bc4a6f54dc486fa19e8cc407f1376 |
| SHA1 | 00eb208425413fe81763df2de00649ba91077f4a |
| SHA256 | 0538c380286b5036a48bb91fe79a39fbfded2115fdb8c4618f8ad2d4e5736cd3 |
| SHA512 | 4a4608175088d5bc025f30afc6063c376dbf9118bab39f630d80c7038cbf732bde86c60e907e6eb1198833f7371f868d84819adae98b8344908cdeb3757906c8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 999fa0f0d679255ff42aa560d4705e20 |
| SHA1 | eb18d292fd0de1244f18db3d3c7af72f065761a9 |
| SHA256 | 8399383157fe5d851234e7019db7decd253dc9b37cb42c2308c199eec547d2b3 |
| SHA512 | ee603151fc2ada62bdbc9e9d7c4d18124b1edde4c74ad457ee9d87d969ae01d683db5f21c80baf29ab9a28f3e2420feb001461c8aa77e22115fce074d1145fb2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b5c427576c3ed7f958ddcd0c1cd8800b |
| SHA1 | 7732bc7f92f30f57971f98433e112496459926e0 |
| SHA256 | 7b837f4f052a2df0c269bcf58f806948441734ff0668abbf36df15b3064d142a |
| SHA512 | 9caa73569fda78a1cea5951c6a73657c27e235a9e0b248c07b199a56c7208b468bc661c000bb836cc8c78bb04388a2059f67369807972684089451dd127281f2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a292449a993ca16985eff7b8cd9e60f0 |
| SHA1 | 513af79adb97c6d771b6a2c09391a11b28fd4637 |
| SHA256 | 9b13eb98009a4f78e8ece28a5a770c83f88510716c17f71d2b4258d9c695d57f |
| SHA512 | 7fb19710a65ac441f2c7fd32342b5fbc30bdf50b8460798de08cd7e519a003b3c700bb8ba77c27d04a60409054912d11015e727ea2a795cb5e07aa410245c7f5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d7ab265409ff77cb55cc4cbf66971f0e |
| SHA1 | 0dac276a91a45fc41f1967f7770a148025b8b356 |
| SHA256 | 811eae52c47252b6bfb66c68cb7263b830d32a5ed834c1f6ad8628ea8879778c |
| SHA512 | bbb2205c35b0954db66b7a4ce3e15e677f9aca493a9f2a5fbce183c179645ad129ebfa4d474ff8d118a550f682ad7b60f31a47aa5083cb48d77451ecfb29adef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 27c888c6422d0b48a56f335d895969bc |
| SHA1 | ad8decd1ff25c2dc0a13f52152883f9a29526394 |
| SHA256 | caf772b143661ce7c335a1b4bb7b6e896d28f784ee744ca65f5eb43c32871a4d |
| SHA512 | fad624c008d720040badc4acaf63203683c7d26c851cd0f1674bf6d38fa79ae8037d01e9bbede86e9ad61d2435bcf90c0d0efdc87cf66616b20ffd230f75eb29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | feb0569ab1e9d6b76b30cfbc30c5657b |
| SHA1 | b3661b20ab6f8c920bc72d1d9c9758f21b821349 |
| SHA256 | e8f493f5b68d88984a9497a98831e7cd7b72618d5908a32e76cdf3919b7badb9 |
| SHA512 | 39fd12d6384f1da7f392ac4da4da849637892cc65ad0e9670c415a10658d0e2189f1d1c9878df944cbf86d0b48570b61798845389811e8ddaafec764950f2da6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0d6a5d446d7332023da5be62b020b7fb |
| SHA1 | a9b476fe072bae831b23858956ee66749610552c |
| SHA256 | 38e029d263457f02c03c43e2196465da36d7653efb9d8ec8e7fcfea0ad49937b |
| SHA512 | c3389e1f9ced24e22f37ff154f07a8a5fefc2179c371c797925791d064bea97105e5249c4a107db74bc1745664547fb9c7cd82c4d481eaedc62fa6dbdf133a2a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5ffe426f9f9eac10cf8ea3c3f58f1b24 |
| SHA1 | 98db831d9cbbe375e202c1c7b8c994e0e6cf6eb8 |
| SHA256 | 1ca541d105bbb51a893e123b77e90b4cc3c45e7e5cdcf4974346cd4b94f4a78f |
| SHA512 | 5ac13c58ea57d1aa81b8a266512cf6ac1b1b85d3ccfb3c72069f19405f40fa4c9aa2ba5656330219d7326d3a01c34cc900ff183c23b32d2beafa7feb3177de3c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 22ae5f18fed1f0944d0676d3efc0d039 |
| SHA1 | 821954f41141fa7ff0e16a5fe06ba22281684880 |
| SHA256 | 171900a294b6c588e2a2ab7b44756e7c6a72d91da5e0815cb29d6521fe0a62ed |
| SHA512 | 5effb14c9d8a9d3cea6f072addb453aaa9ed4d0abf65f6c14438a99369c1cd9b7e46bbbf38a126747b8b6d9e12b8bbf110a1e01d4f2d48e6ae7424c83a322439 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 496c7b2587a3aebfb59c19d3559abd01 |
| SHA1 | 9cd506c8bf4e8f607ea43995524d426f3ef4caff |
| SHA256 | cdb6e1eb3185cff836a238542e87d6d03a967d03e19f8bf6d5b4b2036de720a0 |
| SHA512 | e26d35d0adb6e18b1d04a8087a39aad3e33e69d4d31e713817fc75e5e952d2ec9fbaf8e050e60235fccbe8faddab841091c81f3ec8ba6f2e06665dce73e15138 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b848775dd06abd5f0b8ba1493a7e6db6 |
| SHA1 | a7d7b584f1649e8e6d6dda1bcd6ad17afbd68806 |
| SHA256 | 20d479442bf2a4929c6444278d6c715306035ab3addc1b4d17b174a82dfad1fa |
| SHA512 | 032e05c306445b4b0c0389b0d5cd473a0757a0194543409756f0fea96146634679a43be0573000e5a8154767ffdaa54c4c514d230a2b05230d2db0cb2a32113a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e94544c75cb252148635165ecfffce8d |
| SHA1 | d4dcaa62cdf0e16287023c6a84ceceb290a1b2d6 |
| SHA256 | bdb95efed3b7d1ccfb4433c7ff35c26a39a459ef87fa9b78370e4cd515e911d9 |
| SHA512 | c5fdd58612ef02c0329488c7702962ae249dd421fe80505f5db64ba28d38d6607c7679501412b714ef7527e583646efdf2e1889984ad2ccfbe26b3991b031ccc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 23a9484619466c388c9d8f118fb5f14c |
| SHA1 | 12c6b21c24e551fef3ead5ca305ebe7c73fa5830 |
| SHA256 | 456d2274f1f68c081a26c0cb9c00dd4661b05bcf300817a88ea3bfc4eb24db25 |
| SHA512 | e9e5839827b6e493f4bc638a8fb127a4e3ac42cf8823aa95d6b68c5f94e3cf4fd1cec8f2094c2ab66c84e28436f46bc5f6ea1f6e8155a9a81b11fd251ee33a21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 95bf51d06769662e44d6abb82ccad5b3 |
| SHA1 | f47f5d84755bd266f7b662927c4b6b95fcbccf71 |
| SHA256 | f87539f6f525c1467db881e836810c5d6374db0ae78a5058d7bff9feefedc45d |
| SHA512 | 34cc45c873a81511c510c4472b2287f8b3442fb4a9c93731595baa2fb6e1b8ce217ae1fc6e3bae09db94a67ccb303d5bb909784d60845fb355f9bb93f1e6defc |