Malware Analysis Report

2025-01-18 22:15

Sample ID 240429-pe4f9aab85
Target Screenshot 2024-04-29 14.08.01.png
SHA256 4756b0df0279c72945b8458636ef48a10a120ca0c5aa888acf380bf5df5a3f13
Tags
adware discovery evasion persistence stealer trojan
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

4756b0df0279c72945b8458636ef48a10a120ca0c5aa888acf380bf5df5a3f13

Threat Level: Likely malicious

The file Screenshot 2024-04-29 14.08.01.png was found to be: Likely malicious.

Malicious Activity Summary

adware discovery evasion persistence stealer trojan

Sets file execution options in registry

Downloads MZ/PE file

Modifies Installed Components in the registry

Registers COM server for autorun

Executes dropped EXE

Loads dropped DLL

Checks computer location settings

Checks installed software on the system

Checks whether UAC is enabled

Adds Run key to start application

Installs/modifies Browser Helper Object

Suspicious use of NtSetInformationThreadHideFromDebugger

Checks system information in the registry

Drops file in System32 directory

Suspicious use of NtCreateThreadExHideFromDebugger

Drops file in Program Files directory

Enumerates physical storage devices

Modifies Internet Explorer settings

Modifies registry class

Enumerates system info in registry

System policy modification

Suspicious use of SetWindowsHookEx

Suspicious behavior: GetForegroundWindowSpam

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of SendNotifyMessage

Suspicious use of FindShellTrayWindow

Modifies data under HKEY_USERS

Checks SCSI registry key(s)

Suspicious use of UnmapMainImage

Suspicious use of WriteProcessMemory

Suspicious use of AdjustPrivilegeToken

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-04-29 12:15

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-04-29 12:15

Reported

2024-04-29 12:17

Platform

win7-20231129-en

Max time kernel

102s

Max time network

80s

Command Line

C:\Windows\System32\rundll32.exe "C:\Program Files\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen "C:\Users\Admin\AppData\Local\Temp\Screenshot 2024-04-29 14.08.01.png"

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url1 = "http://roblox.com/" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url4 = 0000000000000000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\FaviconPath = "C:\\Users\\Admin\\AppData\\LocalLow\\Microsoft\\Internet Explorer\\Services\\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url2 = 0000000000000000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingDelete C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 105c481e2f9ada01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url3 = "https://login.aliexpress.com/" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DomainSuggestion C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url3 = 0000000000000000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url5 = "https://login.live.com/" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\GPU C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "420554841" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingDelete\C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7CD01943-8EDF-11EE-A140-5ABF6C2465D5}.dat = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\InternetRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url6 = "https://twitter.com/" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url6 = 0000000000000000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url5 = 0000000000000000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000ea43b027696af14b93efc0131df448ee00000000020000000000106600000001000020000000cba532297a430780ae693f2af62bad243ab180117f466d22a5041e4299d00505000000000e8000000002000020000000b59ef659110ec463f4b4b9a3fb13a9f2f9b211d10906c590c0a9840f6c580f6520000000d416f6131b6aba3caf1801e5ad2d7c658c78a438c7a240ca50ab9b61d5a3dae74000000090474a7174f34f1133bd199f5c731bcda5673f57de5b8248a648af8ae24d4f005cafbfdb624d3cb57dc4a5a15eddaf9d8275d349d534c135d30719e7caf59cdc C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IntelliForms C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{456D5AC1-0622-11EF-A140-5ABF6C2465D5} = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url4 = "https://signin.ebay.com/ws/ebayisapi.dll" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLsTime\url1 = a03c620c2f9ada01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TypedURLs\url2 = "https://www.facebook.com/" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IETld\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage C:\Program Files\Internet Explorer\iexplore.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe "C:\Program Files\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen "C:\Users\Admin\AppData\Local\Temp\Screenshot 2024-04-29 14.08.01.png"

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe"

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2192 CREDAT:275457 /prefetch:2

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2192 CREDAT:2307084 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 api.bing.com udp
US 13.107.5.80:80 api.bing.com tcp
US 13.107.5.80:80 api.bing.com tcp
US 13.107.5.80:80 api.bing.com tcp
US 13.107.5.80:80 api.bing.com tcp
US 13.107.5.80:80 api.bing.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 roblox.com udp
NL 128.116.21.4:80 roblox.com tcp
NL 128.116.21.4:80 roblox.com tcp
NL 128.116.21.4:443 roblox.com tcp
NL 23.62.61.137:80 www.bing.com tcp
NL 23.62.61.137:80 www.bing.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp

Files

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[1].xml

MD5 ead346dbe839c6928491d6f47a191b7c
SHA1 77c90fb94bbb454f2d238b7f81ecdf400f68cc0d
SHA256 494a5a0357114c2e8fc8859b7a3bd78b6096a9d0b6c6192556cdbe9dfbe0b0fe
SHA512 1a0818f0049023efede7f1d7ab83888ab80c2bc24919b2290ee8d66f01b4fa0705019fd0286d06e409a4022be0846eac7b739de2e6c284eb6f12480f315411b1

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[2].xml

MD5 dc8d5bed841a32e699d0ffe15c3c0a52
SHA1 aae597d571fa9443ce64be7012d91c5f4ee9df86
SHA256 cdcbfb9814ab8fafb90c4ab7490b0be85c381c5f41d0482391a2a200ee397a59
SHA512 5b42cc5f9f1098a77934ea78946edab5f85d324b59e56d68424bb60a060059ce00aa17cde1d20199610279688e56d7092562d821b3c4d7eea4da9b3f5c67c6bf

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[3].xml

MD5 1b63930808ddc4193a053cee7841438a
SHA1 cc8f952c32235cbabb0992ceef915ed8372bb117
SHA256 380856d6aa3dc781a66ae9f0be0ac21f54e2fa99935254a4aeb5842db7dcfe04
SHA512 a98b9981f1c95141711af2d009acfa3a18aab8e4de9e49fddbc11212cd1911c84d0570e8d1dd21f752aa3d9ca56216d4d1f6296326124f4584227fdfc61f5e9e

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[4].xml

MD5 3fd12fe0156c7fca5f770b9d80a4a3ca
SHA1 833280b9038f430337680332d9104740fcd7697c
SHA256 009a417994f16b9967986300e3db6a69d992a885a6bd59299cef07675116014e
SHA512 828a1c3f31074627d62dfa374e026d404a738c4f2272877f0c3938032b589399644254674a38f9d2a5450b85a80841289ced8f3e58ff17ed08191495fe768f93

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CN25QFCW\qsml[5].xml

MD5 5351533a035495e4252a3d85471bc366
SHA1 6927a507daa540e4e0f3bb760b486a252d970103
SHA256 cb756cdb34a670c63eb4b8cc2d977af9029a4f89447c66aaf802488aac1ad3d3
SHA512 77dafffe46edebdc51c48cce95472360b44e0d9e8e268254580db20a13bcfdab514f4d7e0b4c9665e5f0ceb0b75456fef8762c5a03bc4d54ccce608a6b5c5a8a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

MD5 29f65ba8e88c063813cc50a4ea544e93
SHA1 05a7040d5c127e68c25d81cc51271ffb8bef3568
SHA256 1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184
SHA512 e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

C:\Users\Admin\AppData\Local\Temp\Tar525A.tmp

MD5 435a9ac180383f9fa094131b173a2f7b
SHA1 76944ea657a9db94f9a4bef38f88c46ed4166983
SHA256 67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34
SHA512 1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 aba696adba4fa30b760af64452ca860d
SHA1 cc1de00bdd8696f8f75ff3a33f7f1a683443b5ad
SHA256 1aa7829a55f5c445e235abb09b93a26485257d1b56d74f58acc2f659920065e2
SHA512 e5c650a5319a2e7b543e96ae8e4bc9dd0ac843a599797fba8073b18366f98111b7334d7f3992ff990918e3593f2907abc4397de69c0344cb5f118f65da4656c0

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 a266bb7dcc38a562631361bbf61dd11b
SHA1 3b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256 df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA512 0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 0e339acdd4f38e3f7d45d3f9a23a10ed
SHA1 31b9a2a757154ade3d5d62a315d356cf4b1c1bb7
SHA256 7fc0783a33a30405e4aed6ac3d6cec67d54d9c3808e01357afecb00346990b8d
SHA512 7ee023a3a2ace5d62cbe60fc0ad9017761517182cbe75db92b674fe04ed288c64947a63ad7564010333320b17925534047aa95d57551e9f6de313bddd22672ef

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 9523b9919e0d1520bce11ab4d0448d04
SHA1 1ab689763e749797fc5f93b59aeff8f27d6bf5cc
SHA256 875f38313fa927f52ecf4c17e13cd9793b24ef3a133168350a3ff6bdb3920e67
SHA512 99877564dd1ab66f40e6bc6a20bb3900f6866c5f824c4163f2ae2c19e76daf47d536e066bfeacb80ead3b652e6a9f63b2b3a00b16816c8407c0f379df4798ec5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 382ba9e635d9a86044a56832141223ad
SHA1 0be3477d3c0c4cf8e4e86f318a0b8a5089c49fdf
SHA256 dd6e04fb7381ef77ad3b3326941ec34198a5cc9337902921b0c84489bcc38916
SHA512 1a366610a324a97439b25005053ffe99267b29dc5210e56930a42789bb0949e2e802eb3c7c6f196ba3d893509c89ed07fc058bb56841a09e4a35d3a35597e919

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 2addefca38c7e9b504605349fadf1ba1
SHA1 de23e6c0792bfa17019e8be2a7bd91cd18cffb04
SHA256 dfb5b65c067bd6d91d64b5f19c127ca4861e81e66be32c9ef0649493fdfad934
SHA512 2064a2afb81fd0e0af51d9d4b87f0711c817cd791e8f20f79c88b5d124e2223a01c0a801b5d007f4a3bee436e866ba76f8b5177c514902e34ef27f90706c5cd6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 124843964403d41225bff8ca64776159
SHA1 e052e54557005b56a4fbe1e0b0a0db96761ec116
SHA256 d346919ae4984409c7e992c1c86fb780d447f65f76896eec41530660900e8847
SHA512 948d9ec3472d1beff85cbe0598dd8145b7db6c6cdfb58a954981c7ecd997109a341fe9e8b16b285e916145e27ed8139e2ad60cfaa90567acdac972791818c3ad

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 e4a68ac854ac5242460afd72481b2a44
SHA1 df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256 cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA512 5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 371fcca1dba66ad1dbfb0411d43c77e4
SHA1 d827ad3d8790000c9389983ceb58d67a52edc92a
SHA256 213a24dd72ece6be69fc5126c1c82a79300a1f034b8abdd8edebe47556b06905
SHA512 dc9f852d090cc4fbd01a8253a93866b9b98e261f00d18ff16e7455d83e188f7b4649d66c2dab6bdb89cbc1abc2113dba6adce0400546ebd2340dfad9076ff104

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 0d41560cc67e3d7767a12ff1fac8ec22
SHA1 07c2338d0044323cd587061ed978e38daf9f197f
SHA256 48801d5d9879867c2142a6b450a28e094abd80d61b4298a8afb170142ddf338f
SHA512 b9f7ae6e595caffcd1c4bb96d46daa4ff4df85af279c756b037a05a5e8b0da7e5cb6fae0bb7f10e016c877764b2e49bcc59c477aed5b515563d53a6d7a622cec

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 113943676b7f6013448af44247e4bf14
SHA1 ac6e6465d69d363772b9379a32f7d7ed72ee1240
SHA256 bc9ef5cd1ead587fe53c59c66c20c595941ecc7fcde4958da78b9292d2e18604
SHA512 58f6a01362ffe717cd8625c5787599927997052d1db47163b14a3d7a1a2dec9c35497f1d559bce4a5027a1505ebf685edf10f1b38b06531af776ac76853ad56d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f2c18e320560de8466b6971e779ff038
SHA1 91b2c9b9bcf75c78b310eff858ed0dbd31ed77ef
SHA256 67798e4c18a92d93c7d1ac3bac0b197ff85fc594437684688461294a1f366ccb
SHA512 0b7b999e6494aaa18ce215bcee27ca1cbee6384981b48c44f1bd81d90826dddb4acc4082c21da52303770f30bb6493635dacfe0ef03d52bb7a91237dd8fef31b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 bda1b0871d51cbbf7cccb9a69ced1f61
SHA1 ed4baf71930008c2ad3230276527fc3ed1ef4453
SHA256 a13c789c9be93aa87212feb52dcbf4c79af2dbc5ddeb1810c6d9b9e73c16115e
SHA512 3448a6bc56a77941456022a799d0da0b05574178470dd6c13e72902625b2fa35e15ef7f33a099c127a43019d6a2ec76ac57d72236eacd8a105f7ed50924bef77

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d23011dccb0ff7925df07b36f8b92fc9
SHA1 ce3da3422da239e991b3f747a88756398506a6e9
SHA256 eda436e20b35ed3fb551b07f220f292291d7879a92769de398ad164c2b0c6db0
SHA512 3b3b41bee207e7b6a379da1fac3b0bd98fa7b38fc67cb7b8e496d72b9e2501c87d58ab8b459e88ceb449da3e61e431d1af66098e231e9c378631ad5b8d39b7f8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 328ca80628cb8ee141b375a78265d7f0
SHA1 e7faa12743971b9d2d62193b726d34c7784fa63c
SHA256 ab7baad3a926b56d2c7d24b50172e60aa0e9d1c2d36864d045b52bd0a0fdb2f4
SHA512 8ae539b295cf2e153d79f1f393fd8466039024cd4594bb4166e1e05cf114d3e4fb2c914df71c9f9fed4823dff39f6f6434a63c57e7ac75bae045291d6a2eb353

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d39e75cee1d3eb2a15daf42b5a7b8659
SHA1 81b837ceb754a7e7b9a26d397811a38f444eea79
SHA256 36ed0079651eabc5ae240ec2c598f0e45b6d7cc4c071d4e61206adadae43f85d
SHA512 0fb8e082a72d2763ed1baec58968a319e5081ecfd53174c2ffa6dff52b4aa5f085ece01ac66d9e056f6e9d80f8dd61dff3d2ebc6123b34ee26e3a316f7371608

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 41fa5b2c4d042084b045cc3d20570a0d
SHA1 2fcf8f25e897876c30de6a8e0e292c195d4420a9
SHA256 a712514dee0e3ee422799bd566badf4148e96a799f5e8eb77fdc8e050d4e4bcb
SHA512 cd4b422a0c5c434b57d558418e680d535d767cef03c1abd8735da7d47758603a4d07192308852d1d2da096a635379d40795fd79a3a744505c0e5c8cfb70513ec

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\HHDKXJOO.txt

MD5 e8677b2a66452f5f1d91f467b9ce7deb
SHA1 bc80a950269b570e204ed087ebbc778a950a1265
SHA256 72305b2f1bf3cbcc1baf9ddc75fd253d176d897edaa2a80af212afa637805ba6
SHA512 d4eae41c90673f3e36eef86a1c67e1f5fb7410d0f0c40c15b1cd99372fb453bc8aae3602d98c9a2cb0f8a95445c6ffaf302bc78c7ffa5c19ca87a66d025035a0

C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

MD5 da597791be3b6e732f0bc8b20e38ee62
SHA1 1125c45d285c360542027d7554a5c442288974de
SHA256 5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07
SHA512 d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f70f393595d039bc10bc952dfa27120e
SHA1 7a1e6d88fe4e07dc3cc3994b96b509cc40590777
SHA256 30957dc45846ed04e9ecb67c548553b1063b3fa4ea6b86c5229685826afd8c23
SHA512 47d217a1b4fcd3d17bd75aea445c38f5ccaadb092785af44c58302932016cd511e977b3541640d22653d4b94daaee55a3320ffe65f702bf37b05e4e0d0f12aa7

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 88a386511ce76c9bc5dab51f2717fb86
SHA1 d24ccd7b31d62f68865a12f274f0e317c8e6a1bf
SHA256 e13bccaa9704e275e2933f14c049e2c27e065a0faf95728d44c2fe297ad690c4
SHA512 48ef58aa8a1a5c78c26d1cc8d9af241f123bcb8949f20efacf52fcd2fdc1e5dab3d0167269534a063f6a959cb21ad0ce61a7b5e272d3e18433e4b9e56417d618

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c0b69a97e64d3ba40ec612d83ed883d6
SHA1 3503547115fcc981e10f6e56175ed7c159fba049
SHA256 780b1e4185464b282003bdc5002d25f5dad8d3a6cd0d73013e4df32fab51d240
SHA512 2c7da31d855edeb27ce6684a3cb1b23c2721efc60191290024871416fc8ef6ae63c039dba452a10f55728c6e9d424fa9b33d1e407810cf2a5e62ccc965b8726b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 aa52d09a1a0693f1df15f0fbf0057286
SHA1 8bde2b18f9ffd83012ccce9783ac3a7a82e55298
SHA256 9ee3df579f482e1b2b98f324fd0a56c136b59b9bf81597fd484f092cf2e31948
SHA512 f32bcc834c5b2c9bd4fd5483e9be3fc5120c3942a132e8e4d273fdff2fecb023133d58bc890f3c229cf509a8deaff728e62b2231329ae524acfb37a059283000

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f079f9eaa9bbf81087f2f81e6186c874
SHA1 f8db6ab3b775c6014ca1d1a9cefd7c051654b614
SHA256 936d6ca1cb5c1c95956facd5c26f3ea1975e535205c8523b282801dcc879b066
SHA512 65d1f16f0972dad3367a90ce8d80c86a900d24fa128d3f725fd3d8790295e3638c7f709583e01706a2475d692153a1486f0385af6f2d897bed78c7153e3944d6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 0e37d5beb9b1e79f0c1481894bf9eda7
SHA1 68cb1a9372f1e72ff24ce2c519a3aeffce95629c
SHA256 edae46ee97511ded4180abe5604a0859cb698f2b251f20a3dd4444a92f29f898
SHA512 30b535b5efe97b7fe3bb6175515994c9c8b33a12ae2197440cfaca4e0b50e3464be63baafdf9aa2abc9cdce9c8416e0c4075b755e38712cd5bd3e39b66437e2e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 8d2b8403303e3cb95852ffae52f5e0b3
SHA1 a70ec203ca769583ac7d87d4c8b2f1dc98dac480
SHA256 47ff5d06bf7b22f18d690f823e7986b3bf27e425cde44bffd6d10404c4f15614
SHA512 aaacae0e6c57e7841188246de643f3bd95652b34936077f88b40aac40cfdeb43fb5b55a8138c90787cf6d06157f9a94bc7734723a66542c8c5981e405052c621

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 72c3d95826ebcdb2f10a62d0a56c53cb
SHA1 4a6ce17367f025d5b969db6d5d9293354da17b72
SHA256 cd4313b318ac853b95ae83a7619bb4244864bca3a0ad15363d495630f01b0752
SHA512 c3fbbd57043a194b99f7f9054fee68e33e161d79c17f0bdf835ca6d7682c27774a3d33a7027ab2094cdd196024f18da3b5b3f5323cb7ca4b34ce71d851da49a6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 18027ad4103cb3294741a3c4c9098423
SHA1 4f98ff0c316f38ceea288cec857fb3be3323048b
SHA256 58e533f56a4d9835e0d9ee2ee7256aedb5d88235cf67a78eafc863c30ecefa7c
SHA512 e787109d5efedca42214817de3435c54b846ace4a68e7cecbf0a66370f8f783192ab1fee559eae3eb90ca685e9c2fae6d1eafd13c250c8a20240d6978b69d08b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 2e185431eda15267bca9bb396eab5c58
SHA1 3d099aec8820ebaf9cd970390def767696c87c84
SHA256 baff5af77a70828a9cde3d72b90dcb3671720eefbf2a1f816ca7e6406763769a
SHA512 7a89fee5d68cd3e570ca45a177d4dd54eec5688f11997e683056a0d32c14e87a0ef2600cb5385ae9fa219fbbedad940933b8eeb0827c5744f39265e673801966

Analysis: behavioral2

Detonation Overview

Submitted

2024-04-29 12:15

Reported

2024-04-29 12:59

Platform

win10v2004-20240426-en

Max time kernel

2580s

Max time network

2581s

Command Line

cmd /c "C:\Users\Admin\AppData\Local\Temp\Screenshot 2024-04-29 14.08.01.png"

Signatures

Downloads MZ/PE file

Modifies Installed Components in the registry

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A

Sets file execution options in registry

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\MicrosoftEdge_X64_124.0.2478.67.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C77526E2-212B-4370-AA85-62A43E6FF4ED}\BGAUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A07DD0D6-7F3D-448E-94C6-43EBF5D78B2F}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\MicrosoftEdge_X64_124.0.2478.67.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Registers COM server for autorun

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_click_helper.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\EBWebView\\x64\\EmbeddedBrowserWebView.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=F6080EAFAE434F49824F2F5E7567F9EF" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C77526E2-212B-4370-AA85-62A43E6FF4ED}\BGAUpdate.exe N/A

Checks installed software on the system

discovery

Checks whether UAC is enabled

evasion trojan
Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A

Installs/modifies Browser Helper Object

stealer adware
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A

Checks system information in the registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A

Suspicious use of NtSetInformationThreadHideFromDebugger

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\ic-blue-dot.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\PlayStationController\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VR\recenter.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\MenuBarIcons\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\Connecting.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ViewSelector\back_zh_cn.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\ExternalSite\github.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\icons\ic-alert.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Emotes\Editor\TenFoot\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\ErrorPrompt\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\AssetPreview\play_button.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\ButtonStart.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Radial\EmptyBottomRight.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\Controls\DesignSystem\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\img_scrubberhead.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\GameSettings\default_badge.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerDark\Unmuted100.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_zoom_hoverpressed_left.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Chat\ToggleChat.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\TerrainTools\unlocked.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\ic-more-events.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\InspectMenu\ico_isnt-wearing.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicLight\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\Controls\DesignSystem\Thumbstick1Vertical.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ArrowCursorDecalDrag.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AvatarEditorImages\Sliders\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\Edge\Application\delegatedWebFeatures.sccd C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerNew\Unmuted20.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\delegatedWebFeatures.sccd C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\graphic\gr-indicator-ingame-8x8.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\LuaPackages\Packages\_Index\UIBlox\UIBlox\AppImageAtlas\img_set_2x_9.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\Controls\DesignSystem\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\sq.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\AcceptButton.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Slider\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\ExternalSite\guilded_white.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\pt-BR.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_zoom.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\AudioPreview\pause.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\LeaveGame\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerNew\Unmuted40.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\icons\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\msedge_200_percent.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\avatar\compositing\CompositExtraSlot2.mesh C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\TerrainTools\mtrl_concrete.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\ExternalSite\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\chat-center.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\msedge.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\msedgeupdateres_bs.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A07DD0D6-7F3D-448E-94C6-43EBF5D78B2F}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\SelectionBox.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonB.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\LeaveGame\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\ug.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\identity_proxy\win10\identity_helper.Sparse.Stable.msix C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\fonts\families\Creepster.json C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\InspectMenu\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\fonts\families\TitilliumWeb.json C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\AssetConfig\public.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Slider\More.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags C:\Windows\system32\dwm.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000 C:\Windows\system32\dwm.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\ConfigFlags C:\Windows\system32\dwm.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\HardwareID C:\Windows\system32\dwm.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\HardwareID C:\Windows\system32\dwm.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 C:\Windows\system32\dwm.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Windows\system32\dwm.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU C:\Windows\system32\dwm.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000\SOFTWARE\Microsoft\Internet Explorer\GPU C:\Windows\system32\wwahost.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000\Software\Microsoft\Internet Explorer\GPU C:\Windows\system32\wwahost.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133588666947545703" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Windows\system32\dwm.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}\ = "Microsoft Edge Update Legacy On Demand" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ = "IGoogleUpdate3WebSecurity" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ = "IAppVersionWeb" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{08D832B9-D2FD-481F-98CF-904D00DF63CC}\ProgID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\ProgID\ = "MicrosoftEdgeUpdate.Update3COMClassService.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassSvc\CurVer\ = "MicrosoftEdgeUpdate.OnDemandCOMClassSvc.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\ProgID\ = "MicrosoftEdgeUpdate.Update3COMClassService.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{8F09CD6C-5964-4573-82E3-EBFF7702865B}\ProgID\ = "MicrosoftEdgeUpdate.CoreClass.1" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftofficehub_8wekyb3d8bbwe\Internet Explorer\EdpDomStorage\office.com\Total = "0" C:\Windows\system32\wwahost.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ = "IApp2" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MSEdgePDF\AppUserModelId = "MSEdge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods\ = "10" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\roblox\URL Protocol C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ = "IApp2" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachine\CLSID\ = "{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF}\NumMethods\ = "41" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{77857D02-7A25-4B67-9266-3E122A8F39E4} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2EC826CB-5478-4533-9015-7580B3B5E03A}\NumMethods\ = "11" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4018855536-2201274732-320770143-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftofficehub_8wekyb3d8bbwe\Internet Explorer\DOMStorage\www.office.com C:\Windows\system32\wwahost.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.Update3COMClassService" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\NumMethods\ = "12" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\NumMethods\ = "26" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8}\ELEVATION C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{492E1C30-A1A2-4695-87C8-7A8CAD6F936F}\LocalizedString = "@C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\msedgeupdate.dll,-3000" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{08D832B9-D2FD-481F-98CF-904D00DF63CC}\VersionIndependentProgID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Interface\{C9C2B807-7731-4F34-81B7-44FF7779522B}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{492E1C30-A1A2-4695-87C8-7A8CAD6F936F} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ = "IPolicyStatusValue" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\NumMethods\ = "10" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Windows\system32\wwahost.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 2032 wrote to memory of 3332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 3332 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 2924 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2032 wrote to memory of 1756 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

System policy modification

evasion
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe N/A

Processes

C:\Windows\system32\cmd.exe

cmd /c "C:\Users\Admin\AppData\Local\Temp\Screenshot 2024-04-29 14.08.01.png"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff80c53ab58,0x7ff80c53ab68,0x7ff80c53ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1712 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2252 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3132 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3156 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4400 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4536 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4556 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4736 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4900 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5076 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5028 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4808 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=2336 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5452 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5464 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5576 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6116 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6100 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5592 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=3608 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5940 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5880 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5828 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5904 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3268 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5552 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5728 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=5632 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6096 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=3608 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=3460 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=1176 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=3208 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=6084 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4348 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe

"C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5872 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=1576 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=4564 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=5808 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=3220 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=3128 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=3476 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=3528 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=4440 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=3472 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=5776 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=5644 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MicrosoftEdgeWebview2Setup.exe /silent /install

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RkJBNUI1RTYtRkZERC00Njk2LTlFNzYtQ0FERTc0MkI5MTYwfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9InsxNkUyNjcyOC1CMzZDLTQxOTUtQUJFMi02QjUyRTJCQjYwQzN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7RHhPYmpIR2ErblJhMmF0QzN3bytJRXBDNzgrWlllQVVia1hwREMyY2o3VT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE4NS4yOSIgbmV4dHZlcnNpb249IjEuMy4xNzEuMzkiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc1NTMyMTc0ODgiIGluc3RhbGxfdGltZV9tcz0iNDc5Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{FBA5B5E6-FFDD-4696-9E76-CADE742B9160}" /silent

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RkJBNUI1RTYtRkZERC00Njk2LTlFNzYtQ0FERTc0MkI5MTYwfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9Ins3Mzk2MkIyRC0wNkQzLTQ1RDMtQUUwRC05QjIyODMzRjJENzd9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7RHhPYmpIR2ErblJhMmF0QzN3bytJRXBDNzgrWlllQVVia1hwREMyY2o3VT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTEwLjAuNTQ4MS4xMDQiIG5leHR2ZXJzaW9uPSIxMTAuMC41NDgxLjEwNCIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc1NTc2MDczMDkiLz48L2FwcD48L3JlcXVlc3Q-

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\MicrosoftEdge_X64_124.0.2478.67.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BA469924-B4E9-4CED-BF60-4D9C5207E5BF}\EDGEMITMP_E4B31.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x22c,0x230,0x234,0x208,0x238,0x7ff6b0fc88c0,0x7ff6b0fc88cc,0x7ff6b0fc88d8

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RkJBNUI1RTYtRkZERC00Njk2LTlFNzYtQ0FERTc0MkI5MTYwfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntCRUUzNEM4Qi1BRTc4LTRBRkItQkNEMy05NjhGMUJFOEMxNTd9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7VlBRb1AxRitmcTE1d1J6aDFrUEw0UE1wV2g4T1JNQjVpenZyT0MvY2hqUT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMTI0LjAuMjQ3OC42NyIgbGFuZz0iIiBicmFuZD0iIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGluc3RhbGxhZ2U9Ii0xIiBpbnN0YWxsZGF0ZT0iLTEiPjx1cGRhdGVjaGVjay8-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_UDE9MTcxNDk5ODA3NCZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1ncXRhcFdBcW1CcEMlMmZNMGtNamNuZkF4dEZJMW9JZ1ZtVkd0STJsVG5kRlJZb2dPMU9vSzlRQ3c3Y0FsNkx0Y0M1ZE5ISDE0TXludTQlMmJ2c1hqb1RUbnclM2QlM2QiIHNlcnZlcl9pcF9oaW50PSIiIGNkbl9jaWQ9Ii0xIiBjZG5fY2NjPSIiIGNkbl9tc2VkZ2VfcmVmPSIiIGNkbl9henVyZV9yZWZfb3JpZ2luX3NoaWVsZD0iIiBjZG5fY2FjaGU9IiIgY2RuX3AzcD0iIiBkb3dubG9hZGVkPSIxNzI3MjM3NjgiIHRvdGFsPSIxNzI3MjM3NjgiIGRvd25sb2FkX3RpbWVfbXM9IjE2MDMxIi8-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-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" -app -isInstallerLaunch

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=5544 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5784 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:EXcbOWXMnkxIwXqB_GuI3iXHIXTxvsUrRxW4TUZWQf8wcTNiCrpR5K6QpbbbSDyrmnR-IN9Q8AfztzslZCDLq9_c5Chnf7JFXfOBm2d_HqGbBEEGkCDGsoCcJvoKqgByCf16LCeTpgNvtwGI58IipI2xN95MudAMlF3aCbrpHQOragAKMLyV3uvTCbtpqQOkctkfF7YBk7n8HRIIeL92j9oKDvv28gVpZYflbVnlJAw+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=4560 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:sKRNQ5fO1s9HIarfyp6gMPhZPy-phpsITwzAylwR_kzRHvGoXo2vN7-VSro2MlNcWD4-27j7G0QWI6ka0eSUj_dca4eD9yldPgLQEyjFuiTgidQtzldoQG4GFVLYAULk_QDQCnQ_nrPaSUXcJYLVpBCjkCFmSl7b2qOMstoi2ZvqukS_goVqd6E1XrcBiMx4aVAHijD0L3ppPkB2suRhggui4VvKZDtt-QJYgNJONik+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=5212 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:tGwFJ_lPOyMk5hXszViSTFBjG5Lh1QVKnWT0AR5hdAnRlNVVNHpgOGcYEQVQcqtcMG7ixPkrvbLnSMzFceg8ew4YAwbirbu6dondRwpksq_6nZPWjRUdFIMwF6s_ntVmnN4wOnoA7h0qN8fsm5kwlkn21b0_JD7wqVoNRcC0CCiJYXiMQHjoGm0Zn3w0j07EG-s9OTte2Vh6uF3005Q6jHMkJD9RbBgDFATvsvHkwTk+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=5944 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:sNp-Zrz7opfOcJbsbYSonxIMsxOtItTSslw_qmnKZxD36pERGlw9XOgzZtlMyxWBSAjrZ5g0lWXEbY4Lmz8rzwYRAhohBVOZ-NFbj8O9WuZFKBIIcZEb7qgZ3xxmD3cVAgOPTZLtli9o-eTrJZu1S_ekbbDfupqH_Vei0V35DeGq5y1_UBQTcXn9orE9n365J153KqSluitwGMO-xJQagdOabUCnmbfv8Cop6dca8QE+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=5268 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:bZf3YfJyC8kUcbYjZhtDkeYU3eFpTfYIBVWqeXoSuTtTFcuYeTtBDEMcwxfCWpctRvZ3sLqLrrYHFvaAM1ro_IwNQ59C-QzRu9aisjfNWDcUMv8G02oHQBb7Ky-xdJa_oDgCxJyewDhF8HSWHGNVYR74GuVlEwGABCJ8_2yYZHnM0JUa4K2Vz1AvUmhyBIjJDu6ZKZ8604KenBand05Y4cr8yA8ua8Dw72767wolGPo+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=5596 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:2N7ajsSqZy4Tua7HhPMHsj5i7pjcn9CEVNsxlQGpcGgy--j9DErbOafPRQ5k7BPnQEckm3BE1lHCMLxZuCo8YAot9dsVvfCf3RGyTBCMpqTkXSuo42emCmfhOSj59vEz1YHc7FqPaOVEf5l5csFZFGm4QJWmoKnjtg8DXkEuBwrZf78Q6zv_Lg-QF1MOGf3Pl21WLpAiERF3OD5wljkP77a4X9cE-5OUsErF-03Onmk+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=6264 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:-Ai7Nvhq3DZ9eSh9jG-ttCB5PRDz5AytbTpIT65Axh7jbUOod_JojQam_-jwUPuAiWd7xSeDGS0PBzia_W8AGxyQAzxhTjBNTmbL1DzVOubhk-Ol-Y0ortBpFuECCai7FaWL51v6HDEUtbUrLeA_W6w1Rqi2rsGUbA9R4mp8pE5q8DIwxBOYZDNfxhBNzVSxvEwLrGfUfjSao5LATtJUiz_6TUbsOtXjvjuy6Rqk_xU+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=4284 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=5560 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:kzS-1XZhMhHsGMc1dVxQxelhhdgInTO8CGY6YV6rz8kbehCN95sJplH3mWBoadaiVjhsEwGbK60nQMXJtDLEsSN0yFv_XglvMWjZIqS6htA88PypWeOtiRZI23a-4oQEK1OtnaetaRmMH1lVP_wRv6Fe5zUFAYmrvCoYC-mVenh9NZgY9cGrREqy4__2oFTvRaeV7EoK-YxSHl8M6_-UIRkmtk1tsZMdCWPJece2NsE+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=5792 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=3448 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=5312 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=4716 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6176 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5752 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=4516 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=6632 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=6888 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=6640 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=7120 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4508 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=6428 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:0PHJH5cIjW75B8xEn-TNpiUbOfCsQGOnrM8iKSRpSE8WRIzSyLo0mZesmuMW18jfqUsulEySpJpMWd6FJLwmU_eMaNHk76_pK6NV_9lt6ebZIRhynstBQ5U-jXkV4HcD_Qtd5ihh-SEdJ9U733iB0pYV0gZGDyhnq0CUxJv-VQwVh3B2sxzcIucCq3X2osx6uY_V7sChx2615piUOXxDzioCKTUIFCPNfjjQfsLddYg+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1964 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:2

C:\Windows\system32\dwm.exe

"dwm.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7092 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=7068 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:atFPVGlarcaXbpjtebvAp7XI0z9nU2ZcCRiAB29XGahepZRAPA4IAyqZmPUh2Cw2Dzm9D4w1c_bb2cAVdxuXiW9PHHkbijNdDjDGlOhYWiCcLBXlcOQdiOQ8RJGFa4jb5Vg4kXAelh9vnanwRTmf5dE-QcTdXD-G3Xflz8iiD8DSQXY9JfHWj3pg606cSUfPq7L83JRlG52NvVkYO1ywiXK4zuTCaIIX8jbHiu8Ur0Y+launchtime:1714393217732+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D155615604%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D93239fb5-7946-47d7-a98b-c09aa72043ce%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=4408 --field-trial-handle=1932,i,17913787059049178305,4696043449731538021,131072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:xUjDt9pxI5Y85Q9KF3I0XMtXVT7aMXMUbw_Dih2nshAlfDK26kXhAcuO2zDMKE6BoX9JIah9bSOnfbmTD6pQj2pTgpWLMhJ2gko45fsQwCXkry_OIX2bC4tTUnzgFuLgqbg0bhK2VvnrnRwWXlURO549n5mR9iRuHQmA21ewYqGfzlixsOyZEU4qavp6tgNpvp3G0rxMkMM_AeIqYfKPDWtSL7oeKnMY8b0d0sHGUN0+launchtime:1714393575857+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1714393103356004%26placeId%3D6356806222%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D19586dc8-271d-4d9a-a0c2-47909f2bdbf0%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1714393103356004+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C77526E2-212B-4370-AA85-62A43E6FF4ED}\BGAUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C77526E2-212B-4370-AA85-62A43E6FF4ED}\BGAUpdate.exe" --edgeupdate-client --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NDI2Rjg2QjktRkI3MC00M0ZELUI3QjQtRkMwRUE3QjE5RDY0fSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntGQkUzOUZEQi1FRkY4LTQ2MjktODYxMi05QUI2MTU2NjVBM0R9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7MUZBQjhDRkUtOTg2MC00MTVDLUE2Q0EtQUE3RDEyMDIxOTQwfSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMi4wLjAuMzQiIGxhbmc9IiIgYnJhbmQ9IkVVRkkiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSIgaW5zdGFsbGFnZT0iLTEiIGluc3RhbGxkYXRlPSItMSI-PHVwZGF0ZWNoZWNrLz48ZXZlbnQgZXZlbnR0eXBlPSI5IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMDU2ODc0NDAwNSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEwNTY5NTI0MDUzIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-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-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-

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A07DD0D6-7F3D-448E-94C6-43EBF5D78B2F}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A07DD0D6-7F3D-448E-94C6-43EBF5D78B2F}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe" /update /sessionid "{E170DE5C-C391-4713-A6DB-74C80C0DD79A}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RTE3MERFNUMtQzM5MS00NzEzLUE2REItNzRDODBDMERENzlBfSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9InsxM0RCNTMwOC05QUY0LTQzNjQtQkMzRS0yQUM4RTFFQTg5RTN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMDYxNDMxNTY4IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMDYxNDMxNTY4IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMDcyMjEyODY1IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIiBkb3dubG9hZGVyPSJiaXRzIiB1cmw9Imh0dHA6Ly9tc2VkZ2UuYi50bHUuZGwuZGVsaXZlcnkubXAubWljcm9zb2Z0LmNvbS9maWxlc3RyZWFtaW5nc2VydmljZS9maWxlcy83MmVkODA4Ny1lZTk4LTQyOWMtOTMzMC1jYTNjMTkzZDQxYWY_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

C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU3A49.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{E170DE5C-C391-4713-A6DB-74C80C0DD79A}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNzEuMzkiIG5leHR2ZXJzaW9uPSIxLjMuMTg1LjI5IiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMiIgaW5zdGFsbGRhdGV0aW1lPSIxNzE0MTM0OTMzIj48ZXZlbnQgZXZlbnR0eXBlPSIzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMTA5MTIyMzI4NSIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7OTVFNTVCMzItQUE5MC00NjY3LUFCODYtRTE4NUQzNzI2MEM1fSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ibGltaXRlZCIgcmVxdWVzdGlkPSJ7Q0Y3RDk0NUYtRjBFMC00RkQ5LUIxRDktQkY1QzRFNjg3QTU1fSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4xOTA0MS4xMjg4IiBzcD0iIiBhcmNoPSJ4NjQiIHByb2R1Y3RfdHlwZT0iNDgiIGlzX3dpcD0iMCIgaXNfaW5fbG9ja2Rvd25fbW9kZT0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O0R4T2JqSEdhK25SYTJhdEMzd28rSUVwQzc4K1pZZUFVYmtYcERDMmNqN1U9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0iezhBNjlEMzQ1LUQ1NjQtNDYzYy1BRkYxLUE2OUQ5RTUzMEY5Nn0iIHZlcnNpb249IjExMC4wLjU0ODEuMTA0IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSJlbiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIyIiBpbnN0YWxsZGF0ZXRpbWU9IjE3MTQxMzU5NDUiIG9vYmVfaW5zdGFsbF90aW1lPSIxMzM1ODYwODUzMzAwMDAwMDAiPjxldmVudCBldmVudHR5cGU9IjMxIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIyMTE0MzI0IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDUxNTgyNTY4MyIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\MicrosoftEdge_X64_124.0.2478.67.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff6f09088c0,0x7ff6f09088cc,0x7ff6f09088d8

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff6f09088c0,0x7ff6f09088cc,0x7ff6f09088d8

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff7b84488c0,0x7ff7b84488cc,0x7ff7b84488d8

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k AppReadiness -p -s AppReadiness

C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1903.1152.0_x64__8wekyb3d8bbwe\LocalBridge.exe

"C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1903.1152.0_x64__8wekyb3d8bbwe\LocalBridge.exe" /InvokerPRAID: Microsoft.MicrosoftOfficeHub prelaunch

C:\Windows\system32\wwahost.exe

"C:\Windows\system32\wwahost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.wwa

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7OTVFNTVCMzItQUE5MC00NjY3LUFCODYtRTE4NUQzNzI2MEM1fSIgdXNlcmlkPSJ7RTc3MkNDM0EtRUE2RS00RjkzLTkyQzYtNkQwNTc2MjU3RkI0fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntBMEUwQzk5NC1GRjBFLTQ0QjItQjAyMi1ENDA0NkI2RTdCREF9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-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-PHVwZGF0ZWNoZWNrLz48cGluZyByZD0iNjMyOCIgcGluZ19mcmVzaG5lc3M9IntENDUwRkU3Ni1DNkVFLTQ5QTAtQjdFRC1FNEI5RDVGNzM3MkN9Ii8-PC9hcHA-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-PHBpbmcgYWN0aXZlPSIwIiByZD0iNjMyOCIgcGluZ19mcmVzaG5lc3M9Ins1NEYyRkIzQS02RTY5LTRGMDMtOEY4Ri0yQzBDNzVCNUZFMjd9Ii8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjEyNC4wLjI0NzguNjciIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIwIiBpbnN0YWxsZGF0ZT0iNjMyOCIgY29ob3J0PSJycmZAMC4xNiI-PHVwZGF0ZWNoZWNrLz48cGluZyByZD0iNjMyOCIgcGluZ19mcmVzaG5lc3M9IntBREU1QkU4MC1GOTc5LTREMDQtOURDNC1DQzgxQzY5Q0MyNEN9Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

Network

Country Destination Domain Proto
US 8.8.8.8:53 g.bing.com udp
US 204.79.197.237:443 g.bing.com tcp
NL 23.62.61.104:443 www.bing.com tcp
US 8.8.8.8:53 17.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 134.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 104.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 183.59.114.20.in-addr.arpa udp
US 8.8.8.8:53 203.142.123.92.in-addr.arpa udp
US 8.8.8.8:53 171.39.242.20.in-addr.arpa udp
US 8.8.8.8:53 65.139.73.23.in-addr.arpa udp
US 8.8.8.8:53 133.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
US 8.8.8.8:53 67.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 4.178.250.142.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 clients2.google.com udp
GB 172.217.16.238:443 clients2.google.com udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 ogs.google.com udp
GB 172.217.16.238:443 ogs.google.com tcp
US 8.8.8.8:53 ssl.gstatic.com udp
US 8.8.8.8:53 3.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 227.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 roblox.com udp
DE 128.116.44.4:443 roblox.com tcp
DE 128.116.44.4:443 roblox.com tcp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.78:443 js.rbxcdn.com tcp
US 2.18.190.78:443 js.rbxcdn.com tcp
US 2.18.190.78:443 js.rbxcdn.com tcp
US 2.18.190.78:443 js.rbxcdn.com tcp
US 2.18.190.78:443 js.rbxcdn.com tcp
US 2.18.190.78:443 js.rbxcdn.com tcp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
DE 128.116.44.4:443 www.roblox.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com tcp
US 8.8.8.8:53 78.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 4.44.116.128.in-addr.arpa udp
US 8.8.8.8:53 170.33.18.104.in-addr.arpa udp
US 8.8.8.8:53 metrics.roblox.com udp
US 8.8.8.8:53 apis.roblox.com udp
DE 128.116.44.4:443 apis.roblox.com tcp
DE 128.116.44.4:443 apis.roblox.com tcp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 locale.roblox.com udp
US 2.18.190.82:443 apis.rbxcdn.com tcp
US 8.8.8.8:53 images.rbxcdn.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
US 2.18.190.134:443 static.rbxcdn.com tcp
US 2.18.190.137:443 images.rbxcdn.com tcp
US 2.18.190.137:443 images.rbxcdn.com tcp
US 2.18.190.137:443 images.rbxcdn.com tcp
US 2.18.190.137:443 images.rbxcdn.com tcp
US 2.18.190.137:443 images.rbxcdn.com tcp
US 2.18.190.137:443 images.rbxcdn.com tcp
US 8.8.8.8:53 auth.roblox.com udp
DE 128.116.44.4:443 auth.roblox.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.200.10:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 82.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 137.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 ecsv2.roblox.com udp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 10.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 3.123.116.128.in-addr.arpa udp
DE 128.116.123.3:443 ecsv2.roblox.com udp
US 8.8.8.8:53 assetgame.roblox.com udp
DE 128.116.44.4:443 assetgame.roblox.com udp
US 8.8.8.8:53 ncs.roblox.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
GB 142.250.200.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 tr.rbxcdn.com udp
GB 23.73.139.26:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 realtime-signalr.roblox.com udp
US 8.8.8.8:53 lms.roblox.com udp
GB 23.73.139.26:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 thumbnails.roblox.com udp
US 8.8.8.8:53 accountsettings.roblox.com udp
US 8.8.8.8:53 chat.roblox.com udp
US 8.8.8.8:53 contacts.roblox.com udp
US 8.8.8.8:53 notifications.roblox.com udp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 friends.roblox.com udp
US 8.8.8.8:53 privatemessages.roblox.com udp
US 8.8.8.8:53 trades.roblox.com udp
US 8.8.8.8:53 aws-us-east-1a-lms.rbx.com udp
US 8.8.8.8:53 syd1-128-116-51-3.roblox.com udp
US 8.8.8.8:53 bom1-128-116-104-4.roblox.com udp
US 8.8.8.8:53 aws-eu-central-1b-lms.rbx.com udp
US 8.8.8.8:53 nrt1-128-116-120-3.roblox.com udp
US 8.8.8.8:53 c0cfly.rbxcdn.com udp
US 8.8.8.8:53 ord2-128-116-101-3.roblox.com udp
US 8.8.8.8:53 c0ak.rbxcdn.com udp
US 8.8.8.8:53 c0aws.rbxcdn.com udp
US 8.8.8.8:53 aws-us-west-1a-lms.rbx.com udp
US 3.214.68.59:443 aws-us-east-1a-lms.rbx.com tcp
IN 128.116.104.4:443 bom1-128-116-104-4.roblox.com tcp
NL 108.156.60.42:443 c0aws.rbxcdn.com tcp
US 205.234.175.102:443 c0cfly.rbxcdn.com tcp
US 2.18.190.142:443 c0ak.rbxcdn.com tcp
US 52.9.157.42:443 aws-us-west-1a-lms.rbx.com tcp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
US 128.116.101.3:443 ord2-128-116-101-3.roblox.com tcp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
DE 18.192.162.186:443 aws-eu-central-1b-lms.rbx.com tcp
US 8.8.8.8:53 26.139.73.23.in-addr.arpa udp
US 8.8.8.8:53 102.175.234.205.in-addr.arpa udp
US 8.8.8.8:53 142.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 42.60.156.108.in-addr.arpa udp
US 8.8.8.8:53 186.162.192.18.in-addr.arpa udp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
US 8.8.8.8:53 59.68.214.3.in-addr.arpa udp
US 8.8.8.8:53 3.101.116.128.in-addr.arpa udp
US 8.8.8.8:53 4.104.116.128.in-addr.arpa udp
US 8.8.8.8:53 42.157.9.52.in-addr.arpa udp
US 8.8.8.8:53 3.120.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.51.116.128.in-addr.arpa udp
US 8.8.8.8:53 t3.rbxcdn.com udp
US 8.8.8.8:53 presence.roblox.com udp
US 2.18.190.133:443 t3.rbxcdn.com tcp
DE 128.116.44.4:443 presence.roblox.com udp
DE 128.116.44.4:443 presence.roblox.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 gold.roblox.com udp
US 8.8.8.8:53 lga2-128-116-32-3.roblox.com udp
US 8.8.8.8:53 aws-us-east-1c-lms.rbx.com udp
US 8.8.8.8:53 waw1-128-116-124-3.roblox.com udp
US 8.8.8.8:53 fra2-128-116-123-3.roblox.com udp
US 8.8.8.8:53 aws-us-west-2c-lms.rbx.com udp
US 8.8.8.8:53 aws-us-east-1b-lms.rbx.com udp
US 8.8.8.8:53 lax2-128-116-116-3.roblox.com udp
US 128.116.32.3:443 lga2-128-116-32-3.roblox.com tcp
DE 128.116.123.3:443 fra2-128-116-123-3.roblox.com tcp
US 3.224.12.184:443 aws-us-east-1c-lms.rbx.com tcp
PL 128.116.124.3:443 waw1-128-116-124-3.roblox.com tcp
US 34.230.168.52:443 aws-us-east-1b-lms.rbx.com tcp
DE 128.116.123.3:443 fra2-128-116-123-3.roblox.com tcp
US 35.82.238.102:443 aws-us-west-2c-lms.rbx.com tcp
US 128.116.116.3:443 lax2-128-116-116-3.roblox.com tcp
US 8.8.8.8:53 3.32.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.124.116.128.in-addr.arpa udp
US 8.8.8.8:53 184.12.224.3.in-addr.arpa udp
US 8.8.8.8:53 52.168.230.34.in-addr.arpa udp
US 8.8.8.8:53 3.116.116.128.in-addr.arpa udp
US 8.8.8.8:53 102.238.82.35.in-addr.arpa udp
US 8.8.8.8:53 games.roblox.com udp
US 8.8.8.8:53 voice.roblox.com udp
US 8.8.8.8:53 c0ak.rbxcdn.com udp
US 2.18.190.133:443 c0ak.rbxcdn.com tcp
US 8.8.8.8:53 js.stripe.com udp
NL 18.239.18.104:443 js.stripe.com tcp
US 8.8.8.8:53 followings.roblox.com udp
US 8.8.8.8:53 104.18.239.18.in-addr.arpa udp
US 8.8.8.8:53 sin4-128-116-50-3.roblox.com udp
US 8.8.8.8:53 mia4-128-116-45-3.roblox.com udp
US 8.8.8.8:53 c0.rbxcdn.com udp
US 8.8.8.8:53 mia2-128-116-127-3.roblox.com udp
US 8.8.8.8:53 aws-us-east-2b-lms.rbx.com udp
US 8.8.8.8:53 iad4-128-116-102-3.roblox.com udp
US 8.8.8.8:53 dfw2-128-116-95-3.roblox.com udp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 128.116.45.3:443 mia4-128-116-45-3.roblox.com tcp
US 128.116.127.3:443 mia2-128-116-127-3.roblox.com tcp
US 128.116.102.3:443 iad4-128-116-102-3.roblox.com tcp
US 128.116.95.3:443 dfw2-128-116-95-3.roblox.com tcp
US 3.20.87.127:443 aws-us-east-2b-lms.rbx.com tcp
US 8.8.8.8:53 cs.ns1p.net udp
DE 52.58.114.95:443 cs.ns1p.net tcp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 8.8.8.8:53 badges.roblox.com udp
US 8.8.8.8:53 s.ns1p.net udp
DE 18.194.96.40:443 s.ns1p.net tcp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 8.8.8.8:53 m.stripe.network udp
US 151.101.0.176:443 m.stripe.network tcp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 8.8.8.8:53 3.102.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.127.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.45.116.128.in-addr.arpa udp
US 8.8.8.8:53 127.87.20.3.in-addr.arpa udp
US 8.8.8.8:53 3.95.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.50.116.128.in-addr.arpa udp
US 8.8.8.8:53 95.114.58.52.in-addr.arpa udp
US 8.8.8.8:53 40.96.194.18.in-addr.arpa udp
US 8.8.8.8:53 m.stripe.com udp
US 44.229.164.12:443 m.stripe.com tcp
US 8.8.8.8:53 176.0.101.151.in-addr.arpa udp
US 8.8.8.8:53 12.164.229.44.in-addr.arpa udp
US 8.8.8.8:53 fra4-128-116-44-3.roblox.com udp
DE 128.116.44.3:443 fra4-128-116-44-3.roblox.com tcp
US 8.8.8.8:53 b.ns1p.net udp
US 8.8.8.8:53 3.44.116.128.in-addr.arpa udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 setup.rbxcdn.com udp
NL 18.239.94.12:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 12.94.239.18.in-addr.arpa udp
N/A 127.0.0.1:60431 tcp
US 8.8.8.8:53 client-telemetry.roblox.com udp
DE 128.116.123.3:443 client-telemetry.roblox.com tcp
N/A 127.0.0.1:60435 tcp
US 8.8.8.8:53 ecsv2.roblox.com udp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
US 2.18.190.72:443 setup.rbxcdn.com tcp
N/A 127.0.0.1:60438 tcp
N/A 127.0.0.1:60441 tcp
US 8.8.8.8:53 233.69.68.104.in-addr.arpa udp
US 2.18.190.72:443 setup.rbxcdn.com tcp
US 2.18.190.72:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 72.190.18.2.in-addr.arpa udp
DE 128.116.44.4:443 auth.roblox.com udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 20.7.47.135:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 135.47.7.20.in-addr.arpa udp
US 8.8.8.8:53 msedge.f.tlu.dl.delivery.mp.microsoft.com udp
GB 23.73.139.35:80 msedge.f.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 35.139.73.23.in-addr.arpa udp
US 8.8.8.8:53 7.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 consent.google.com udp
GB 172.217.16.238:443 consent.google.com tcp
US 8.8.8.8:53 encrypted-tbn0.gstatic.com udp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com udp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 encrypted-tbn1.gstatic.com udp
US 8.8.8.8:53 encrypted-tbn2.gstatic.com udp
US 8.8.8.8:53 id.google.com udp
GB 142.250.178.14:443 encrypted-tbn2.gstatic.com tcp
GB 142.250.187.227:443 id.google.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 172.217.16.234:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 227.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 226.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 234.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 www.bitcoin.com udp
US 104.18.0.118:443 www.bitcoin.com tcp
US 104.18.0.118:443 www.bitcoin.com tcp
US 104.18.0.118:443 www.bitcoin.com udp
US 8.8.8.8:53 trackcmp.net udp
US 8.8.8.8:53 s3.amazonaws.com udp
US 8.8.8.8:53 api.opmnstr.com udp
US 54.231.228.224:443 s3.amazonaws.com tcp
US 104.18.34.214:443 trackcmp.net tcp
US 104.18.0.118:443 www.bitcoin.com udp
US 8.8.8.8:53 api.pulse.btctest.net udp
US 8.8.8.8:53 coin-api.bitcoin.com udp
US 172.66.41.6:443 api.opmnstr.com tcp
US 8.8.8.8:53 ajax.googleapis.com udp
GB 216.58.201.106:443 ajax.googleapis.com tcp
JP 35.74.178.216:443 coin-api.bitcoin.com tcp
US 8.8.8.8:53 accounts.google.com udp
NL 173.194.69.84:443 accounts.google.com udp
US 8.8.8.8:53 platform.illow.io udp
NL 18.239.50.102:443 platform.illow.io tcp
US 8.8.8.8:53 118.0.18.104.in-addr.arpa udp
US 8.8.8.8:53 232.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 6.41.66.172.in-addr.arpa udp
US 8.8.8.8:53 214.34.18.104.in-addr.arpa udp
US 8.8.8.8:53 106.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 224.228.231.54.in-addr.arpa udp
US 8.8.8.8:53 84.69.194.173.in-addr.arpa udp
US 8.8.8.8:53 102.50.239.18.in-addr.arpa udp
US 8.8.8.8:53 region1.analytics.google.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 www.google.co.uk udp
US 216.239.34.36:443 region1.analytics.google.com tcp
BE 64.233.167.154:443 stats.g.doubleclick.net tcp
NL 18.239.50.102:443 platform.illow.io tcp
US 8.8.8.8:53 api.platform.illow.io udp
DE 52.28.151.50:443 api.platform.illow.io tcp
DE 52.28.151.50:443 api.platform.illow.io tcp
DE 52.28.151.50:443 api.platform.illow.io tcp
US 8.8.8.8:53 branch.wallet.bitcoin.com udp
US 8.8.8.8:53 web.stytch.com udp
US 44.241.18.200:443 web.stytch.com tcp
US 13.57.99.34:443 branch.wallet.bitcoin.com tcp
US 8.8.8.8:53 216.178.74.35.in-addr.arpa udp
US 8.8.8.8:53 36.34.239.216.in-addr.arpa udp
US 8.8.8.8:53 154.167.233.64.in-addr.arpa udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 50.151.28.52.in-addr.arpa udp
US 8.8.8.8:53 200.18.241.44.in-addr.arpa udp
US 8.8.8.8:53 34.99.57.13.in-addr.arpa udp
US 8.8.8.8:53 api2.amplitude.com udp
US 34.209.159.134:443 api2.amplitude.com tcp
US 34.209.159.134:443 api2.amplitude.com tcp
US 8.8.8.8:53 134.159.209.34.in-addr.arpa udp
US 216.239.34.36:443 region1.analytics.google.com udp
GB 142.250.200.3:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 3.200.250.142.in-addr.arpa udp
GB 142.250.200.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons3.gvt2.com udp
GB 172.217.169.67:443 beacons3.gvt2.com tcp
GB 172.217.169.67:443 beacons3.gvt2.com udp
US 8.8.8.8:53 67.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 e2c51.gcp.gvt2.com udp
US 35.212.207.78:443 e2c51.gcp.gvt2.com tcp
US 8.8.8.8:53 78.207.212.35.in-addr.arpa udp
US 8.8.8.8:53 beacons.gvt2.com udp
US 192.178.48.227:443 beacons.gvt2.com tcp
US 8.8.8.8:53 227.48.178.192.in-addr.arpa udp
US 8.8.8.8:53 apis.roblox.com udp
DE 128.116.123.4:443 apis.roblox.com udp
US 8.8.8.8:53 4.123.116.128.in-addr.arpa udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 aws-us-east-1c-lms.rbx.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 34.198.204.165:443 aws-us-east-1c-lms.rbx.com tcp
US 8.8.8.8:53 static.rbxcdn.com udp
US 2.18.190.134:443 css.rbxcdn.com tcp
US 8.8.8.8:53 c0.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 2.18.190.133:443 c0.rbxcdn.com tcp
US 205.234.175.102:443 static.rbxcdn.com tcp
US 8.8.8.8:53 c0ak.rbxcdn.com udp
US 8.8.8.8:53 c0aws.rbxcdn.com udp
NL 18.65.39.25:443 js.rbxcdn.com tcp
US 2.18.190.133:443 c0ak.rbxcdn.com tcp
NL 108.156.60.42:443 c0aws.rbxcdn.com tcp
US 8.8.8.8:53 165.204.198.34.in-addr.arpa udp
US 8.8.8.8:53 25.39.65.18.in-addr.arpa udp
US 8.8.8.8:53 nrt1-128-116-120-3.roblox.com udp
US 8.8.8.8:53 atl1-128-116-99-3.roblox.com udp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
US 8.8.8.8:53 dfw2-128-116-95-3.roblox.com udp
IN 128.116.104.4:443 bom1-128-116-104-4.roblox.com tcp
PL 128.116.124.3:443 waw1-128-116-124-3.roblox.com tcp
US 8.8.8.8:53 lax4-128-116-63-3.roblox.com udp
US 128.116.102.3:443 iad4-128-116-102-3.roblox.com tcp
US 8.8.8.8:53 ams2-128-116-21-3.roblox.com udp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
US 128.116.99.3:443 atl1-128-116-99-3.roblox.com tcp
US 128.116.63.3:443 lax4-128-116-63-3.roblox.com tcp
US 128.116.95.3:443 dfw2-128-116-95-3.roblox.com tcp
NL 128.116.21.3:443 ams2-128-116-21-3.roblox.com tcp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
US 128.116.63.3:443 lax4-128-116-63-3.roblox.com tcp
US 128.116.95.3:443 dfw2-128-116-95-3.roblox.com tcp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 13.67.191.143:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 lms.roblox.com udp
US 8.8.8.8:53 3.21.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.99.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.63.116.128.in-addr.arpa udp
US 8.8.8.8:53 tr.rbxcdn.com udp
GB 23.73.139.17:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 voice.roblox.com udp
US 8.8.8.8:53 t2.rbxcdn.com udp
NL 18.239.83.9:443 t2.rbxcdn.com tcp
US 8.8.8.8:53 143.191.67.13.in-addr.arpa udp
US 8.8.8.8:53 17.139.73.23.in-addr.arpa udp
US 8.8.8.8:53 9.83.239.18.in-addr.arpa udp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
GB 23.73.139.83:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 83.139.73.23.in-addr.arpa udp
US 8.8.8.8:53 ncs.roblox.com udp
DE 128.116.123.4:443 ncs.roblox.com udp
GB 142.250.200.3:443 beacons.gcp.gvt2.com udp
US 13.67.191.143:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
DE 128.116.123.4:443 ncs.roblox.com udp
US 8.8.8.8:53 beacons2.gvt2.com udp
GB 142.250.200.3:443 beacons2.gvt2.com udp
US 8.8.8.8:53 presence.roblox.com udp
DE 128.116.123.4:443 presence.roblox.com udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 20.114.58.89:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 89.58.114.20.in-addr.arpa udp
US 8.8.8.8:53 239.249.30.184.in-addr.arpa udp
US 8.8.8.8:53 www.office.com udp
US 13.107.9.156:443 www.office.com tcp
US 8.8.8.8:53 res.cdn.office.net udp
NL 23.73.0.190:443 res.cdn.office.net tcp
NL 23.73.0.190:443 res.cdn.office.net tcp
NL 23.73.0.190:443 res.cdn.office.net tcp
NL 23.73.0.190:443 res.cdn.office.net tcp
NL 23.73.0.190:443 res.cdn.office.net tcp
NL 23.73.0.190:443 res.cdn.office.net tcp
US 8.8.8.8:53 nav.smartscreen.microsoft.com udp
GB 20.162.145.158:443 nav.smartscreen.microsoft.com tcp
GB 20.162.145.158:443 nav.smartscreen.microsoft.com tcp
US 8.8.8.8:53 smartscreen.microsoft.com udp
GB 20.58.112.186:443 smartscreen.microsoft.com tcp
GB 20.58.112.186:443 smartscreen.microsoft.com tcp
GB 20.58.112.186:443 smartscreen.microsoft.com tcp
US 8.8.8.8:53 156.9.107.13.in-addr.arpa udp
US 8.8.8.8:53 211.143.182.52.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 20.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 190.0.73.23.in-addr.arpa udp
US 8.8.8.8:53 158.145.162.20.in-addr.arpa udp
GB 20.58.112.186:443 smartscreen.microsoft.com tcp
GB 20.58.112.186:443 smartscreen.microsoft.com tcp
GB 20.58.112.186:443 smartscreen.microsoft.com tcp
US 8.8.8.8:53 186.112.58.20.in-addr.arpa udp
US 8.8.8.8:53 browser.events.data.microsoft.com udp
DE 51.116.246.106:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 106.246.116.51.in-addr.arpa udp

Files

\??\pipe\crashpad_2032_ZISRTLXWNOUIZPTM

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 caacf89c1e205ecba011de4253942bf2
SHA1 0f248ffcc1f8dea824163ba4bbb2b4ca1b962b7e
SHA256 338411e9b94189e32476dd2114e3899182b8eb371518de73aab24ed76d01d361
SHA512 360437083f1f9336ad4eb688cada9c74d82e2805543184ad7508bfd70e869333a3a13f7e2c17128af9e03a8f6002d2f28cf83ac50636cb6fbf728e2a492f0669

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a8317ec39e4e6e53a978480983f51129
SHA1 51d463ffea335b92666b4d8aee2c595fc1a0df86
SHA256 bf22d01fad93487999248644f8d3bd6307f63b718c5a155dc02ce3cd4e727c95
SHA512 0cf4fb3a667a16fc934a0372be8192160de8984747ef4c236c44c4dfacba3956740c5d378fd3ff7494c3c2e1d3910eef1bcf3acf0146c39fcf9c7b17e230c911

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9891bad9adb5483f9609ed1701972403
SHA1 edcaee604864a38841127c90e7ea3b4d5584daf3
SHA256 c084227e30770b1c71d0ba1a6ae8ac6b814ea28776e44f6c9ea5a470a1503a62
SHA512 b21a826a97367efc6bed8b619b54ae5632fd90627083f5444cafa1b7c855998bc587fedaf082b8d34a17fb74b335ef4725785c81bccfed30f03ece5f4858b46a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 c83cd4ea330ab7a908ec372350cdcb6d
SHA1 6585e9888f0f04f01d1433f6ea8608d93a6f321f
SHA256 c94b367787d2d973dc5be87d3679b4ca3a4b2a9dd988d4c7a89c0c7d8d924213
SHA512 92ba3ae72b0728f2a910fec80c6aa8d8dccad161d50e7626e26c24d8cf70779bb6b8acfa7a6b4b3ce7ad49a0a856dae842a044916fc7316e243dfdbb3f6012d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 86649a3468cf2e2229b8464629bf0f33
SHA1 64deafc469a4ddacd57642a31f5d489a048b2b97
SHA256 d8d913dd300a7bb8bff731340f2becc608959c1162e472cef89371c69056a0fc
SHA512 cbbe6ac27f1417965dba899cc91931ff731823405d99bc62c1490cd99270fb00c28f49192ea5ce6593ec1747d4701097de3d3fa15b9d630c4cd56cc3edd2af3d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cea980128c053c490d65f38f925f2f28
SHA1 bfd1f8a33dc76844329ebcd486ece65e37c20df9
SHA256 9af654132027720e4b322594fb9a2bc00c90406cc2394edc0023a410ccb3eced
SHA512 804032d0ece38ec265d3bcb343cda95fd8cd708689d2dbc014c66fb3e8a11d3aa79cdae029c7bea7800d23cdd24d174aefe145e2f57ac4fc988a7e1fe9f7c73e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6589b6d93e7868b14cea3797fefd816f
SHA1 57d3155a214097db287ace323783cc091b419324
SHA256 22ac7d673db56766259651de6e84d49ee36d297db0e1d3084e51f0c585cbb932
SHA512 93cf4535a7198690e4db2ba42874b1611733622e3141a9bc35f51cc2855597833db811cd60e544fb17dbca2601ed763a69116b9d0bd33ee8c4b9993ea44c4b99

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 0cf5efc95be54fa43e39797ae804524f
SHA1 a39c1807b137b8ea73dff9b89688995dd2166bd7
SHA256 50fae18c02d58d844d50947378cde8f15d0d0536c4f9cfabc718303f5565dbbb
SHA512 2eab4ede4aaa2ba9d3fa75c393298115d1033abd6e116c413e3d2c04f0cc4effeaf66c5bd884a4dcb5111ec2c11a279219953f9654d66cedc099228a04ae2773

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 72887a52d73d5fcabf8c1deeadf1fc60
SHA1 ab42eeef2ba8596e510b758adb7011be19b7990a
SHA256 7bdde9b5c4df46e595c168aa717ae092d7c310b6fc44bfa817f872c5b8747b92
SHA512 9691755b718a4f9bab7c0721052de9c8280d5d71f48faa2f301059aabe6183264b2a359abb97c3dd897a4f0189edf2c9aabcf909789ee4e076869057842fb232

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 93c689574f8eb398b8c19a6957a5fccb
SHA1 57aebfe08fd2ef9b16d5d4bf352fe2b38dd1178e
SHA256 df759db80049ceaab19878f29481644de6142a3e7efb116ee7808a7c0f230a94
SHA512 b73ffc18126691b35fb7fe065d401422224eb2f537c52b815c6f8dbe02ce8b6fce2a7f8ce3be0d7d46b7dc59dacf8b9431a12dc783c5a59b4e81fd45cf85f6f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6d767622c1d609226cca72d0bccaec2d
SHA1 6587049d22ba824e6b408e2c2145fdeb6a8349b4
SHA256 e77bc2753d61c7684a08469b92913710f4182577685616b9fe4a07c02ecf4f31
SHA512 a6d3dbf394ec2087029d879539fe8beb32d27da798075898c5311f6121bb5f861486ef59154f7168eacfe1254dc8c7e469d7295da294414d11a2e37e764b18d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000044

MD5 588ee33c26fe83cb97ca65e3c66b2e87
SHA1 842429b803132c3e7827af42fe4dc7a66e736b37
SHA256 bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760
SHA512 6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5a0205.TMP

MD5 77377c117fc770914da1e44f983e469b
SHA1 7aa4ce3f05431a213a0c4b13a77da01f6e08ee8d
SHA256 7d348554039488fe4afaab29ecf2f8b79b62f671cf42eb61d0042d70a1d1a8b3
SHA512 b449a3e37c932288d0da31c5266b439b183d0bc3c102dc21904afefa990684d4b50dc7fbe04130b1023c5cc119a26b0257285f51e600fd6e2329220a2147b036

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\c6e51f56-0a3d-45e1-9e2b-f8646c246d40.tmp

MD5 da58605a7e3adc7205fe94b3937980fe
SHA1 fe7f33fb558e7cc525311fc20cf52dda96114fa5
SHA256 fd5990260e0ddd35cc49e43ec75590290b1c92e73c190bf33e3cb86a7bff483d
SHA512 ae02daba67e4d3ddb98c70a1bd2b19ce143eddf912c1983f712d7f537a5513df3ff83ced9c91687c5349a0ca4e7a8c09583171e6ebd98c688a81d38ca0291b0d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3e238d7eaf6ab7e9545adbabd05b2f63
SHA1 fe9c2d5b31f0daba94912700040935eff68f8fdd
SHA256 7f9a501efaa9943240ec2354ba654626255f81b99fbca46505cd18f1281009a1
SHA512 3b7f071081b8c29f48d5f93e2c0f19a884273e926cd248bb6de6a0dc1adbddf3611bede6858233b92b5be2e43a77198fcbfdbe66c5c6aa5ffd3b98f02e1eed43

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dcb4b4a8872bad2057f1f599506b128f
SHA1 9680b693b0915b1fda5e36f3c7944955e78272db
SHA256 b5449c15e8dedba5caae7f485d7b37a381d4f29eb02b6468f35267fef05a9c8e
SHA512 ae45a5b732aed785316ebea72a805981b0eff4959b5e0ebf729579255858e2b0f57999dced2df59ac35063475a0531732a4b33ddab3b7fe6e0157fd477b03392

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e80eb1d0c0fd23b464c981b26e791179
SHA1 f8ac7ede72d4eab89187ec49e3f79eef7b2f3990
SHA256 94a9961ea467e81f122d8efefcb0d3bbe98c1cab866a26cc1457d1dda7ce8fb3
SHA512 1ecd5902cd930868d25426fdbee954d75f338eae10e33c8401bb7a37b67120d7eea70d65847275dcc92c2f23e3e3409748fc8e9e69f204ab2fb7b95606837bc7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 babf766cc5939174d2381619b60dadfd
SHA1 4b83cacfa9b8e0002a1a6ddb5953fb8ae45e69c5
SHA256 5d92e554886fd84ead6dabd5a10f2ad56a7948268df2c7604eda10e728dcfc76
SHA512 cd32a3907532c6a6d5fb80d21b9a34c19056209a592d7175b229fc77961c7bc318d1e1fa4d1befb8a36c6efb1126cbc7173bb39ab43a605b623a1f4e3f44f6ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2ef73602134809d22e2ebe29d4a76cd5
SHA1 9b0798f4c926aee7169b20f7afcda9ec843a6b36
SHA256 85a8f492927e89705217facdd00bb794aa00cf90e063710609dccd8c76c0d482
SHA512 23652b51b9d6fc913a71b285722b30719a60bcdbaf479a3833dada6889a6e1e4c7a41dc954803b576cce8ae45af4c61564fc35e47ae8bbb8b282696bb6825b61

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ae86ca861a8f37193a8a2b190b5fc0b9
SHA1 626ca74f0eca0860780de6409c19080ac66efb9e
SHA256 c6fc4f4b4e814acb6ca0903bf83568d39593bd37e75d12a0a7ebfbaaeb9f5088
SHA512 92d77d2516f8d04dee4eec01a47c32c7e8c236c5634b183f324a0d5ba43f7fec3db4c9417a3ee7b23e20d0ca8278f783f153bafd5b6cdf176d630be485999347

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 81e1a8473cfb1b3cb1d5d8c1f20f292d
SHA1 639b9977651f568c40249d18fa20a2606bb325cc
SHA256 5d33125dd012d26ecdb96a4d89485dc6d2409dd17086368ae49e3d7e94652fa9
SHA512 4a07d429c9adb2dffb50a1f76eabcbd06723996689e24f6cf11a04deaf438d49952ae555e05e83c36a5d599c47faba9f5596d777022b9a562b5c8ef2c32fd599

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dbdcfc149e5dd02d76ea4e2c7f9a7a14
SHA1 65b060fe9fbf878180c73b8d9c17a9b11c3dac08
SHA256 11024ecbe89862e1df6d061e5305f11dd806327a0d725ff1974be9cb997e84d4
SHA512 f2b4fa5cb4dd139fe872ce6720c459aaaac8bf89730385e6c393c4df7049c0634d6c70ba1eb090c7ef5c049cfae26b26b7800ba8f6cd48b1ce5742067419612a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 5ae6d86b2901663773c0598deb502a29
SHA1 2f2b352f7fe5186a08b7fd55d60bfdb5b16317ea
SHA256 1f0ff9e9de6b1943569244086f1f23a111136d6869f772d4e3d9cd41aa42b3d7
SHA512 457b1fa8a0c191b2f688ec8e9cb471f8e195b180a8cf774dc9428df8767b89664707eb9428b2e4ef117a71e2bccd427557e0cc19f00855442de331edef80bd00

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 5280803eead8244a61089b166a4eda2a
SHA1 3b67aedfbbfe4db671caa759fa98719f49f54c11
SHA256 87bad47b09e035643b58cfb8df338875f1327f19e8b7448b5a265501172352bf
SHA512 aa0179f27717e2dc6eabe8c56f101977c2f3b0afabf94f2ca9854c785d34d6d6691f251784a2e1f3bd9f57eaa83de32dade4f357abd4840aa3efd10eaded3a55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old~RFe5aceda.TMP

MD5 39deab81691938aba13a6b1c1ff05eef
SHA1 b1d6b9be604c86dc41f6ffac089aac1e3771bb13
SHA256 8c56c6d0e85f35c6cfcf2995c17f2fdd57de95d92bb82bb910284c8c20bec0bf
SHA512 cb7d8b403bbc49b147282d3150654ebc62a71db5f5598b9f9ddb07dc0d6813d1e29ef4b56e5a63a1388d4241c4ef7725762424d32deba6289a1147c822dace37

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b7d4b55f54670ca5c4817e25ee5ce289
SHA1 0ef9871eeb248c20232d8bf27f8ff6a4a1efc1e7
SHA256 b670467862df369978edcde2fe2e9c78228d9e222fe352db09dfbf3adb64ad0b
SHA512 80455589c0b76bb1256125426bc6f72268e67efd23aaa3cf6cf4e182b90976a7481868d4781da62a90d0d27b02370b7f6bdb7f2e23346f47c5311fc95df0cc5a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 73f1f85617544ff40c6ca61aba2477bb
SHA1 dfbbb9d2e5c49ec85481f0ea5f1d0fe5a2e77edf
SHA256 a3f6aa2b2cb7eaff37736002446f8173f45f40e0866900888af0760e991c86be
SHA512 37354652c9ddfb0d0979fa54ff5851c028767662f9a588f4b8b3654f52cb6b607d1970840e48fcdb137c61b4cb51f32afe9a8565194eae3b70758ce13ed116ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 22b7490413f20d5dc8cf5c6ebc1a58c1
SHA1 d28edda5d68bab33df51d8095e78526b18199619
SHA256 a82c4c3329ff713ab67773f040bef7d15398b6f75c09cdd3ede0180d2a14c70d
SHA512 2a51be7a07ec58ac9b53f37b26d62ae789bb5fb7442dffe05c736de306de672f58e56c9ea0c9fdb61637dac4beb7f6e7116c2f2083d81a28c9e6ab563e3e4967

C:\Users\Admin\Downloads\Unconfirmed 996353.crdownload

MD5 c52eec089b9dab56e69fa5f4d9350d8e
SHA1 e89b321198835baa1313dcd1b7eb71fc75eac6b7
SHA256 d1a0d760bf92479e176dbddb70669d9c3bcbcf8743c5601517682ee300a202de
SHA512 894f3ece52ba0fdb7bf5eb3b4a473df66230be894fc47ba2f5189a06ec5db252f0a215d6062514c5b467cdb498555ef03b2dd26d6a8d76a25e121bff67fb4677

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 36333c9a65c42e183d2c2d5fd7b54810
SHA1 b49343e1f8e07543cb4a6667d40d5e3684bbcf9d
SHA256 f62f0906e3b17e6899533541d9424398bd011d30800fe3f8968caa11ba261ab5
SHA512 8c21af4e1d6ba50e9334988cec1ac1e1fd6e03a04b553873258b1734b3256a02452ea32f4872a3246dc580f9871a390031e5b75ce3015550aebe3e6b88480d7f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e2ec141d5726ae250192f1e78ac01451
SHA1 0fa8af0ae56425a826b7efbebbe0bc769aebb6da
SHA256 03d513ae85681721502bb0fa36ac3e73279d20f6f9be17cfab06a3f679e71146
SHA512 b57e4eadc399434b46464947bf7a077cda4be5d77a7017d897d910fb92506437cfcfca914093657a870610acb0753acb3cf41f1a763adca4c071cd3806add201

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 b9e001b38ce6ce6ab33c0565bf35f1eb
SHA1 36849a95782a7f85bc8a127dfd7476fc0d233c32
SHA256 c6268e95b3476ab4be3d937350da397b585954f2e7cbd356db7fcfcaf266f132
SHA512 21abbd567ebb944681c3b72855ea40b5d4c770dd5362fba30e0da2dea20a84557bae5f280cacc27853a03553fe87ad1b36b21a2cf7360c74667b30cd3552b44e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 be6ffbcca48158708f4f875f5910141b
SHA1 efa8195c6fbf83f443e7645afbaa7fdc1d4d69fd
SHA256 5dc123d65727905666f33c594c5131b0266238f3fb783dd87344f85e22ee195e
SHA512 fba5a39ba7931a18862e48e0b944b4ad7c21239fd57911ff476019c48137736f17e9de0447fc1ab1ccc5de570ff8543f7a0ba69ca0c0f0ec7e4808763c8b247a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 51a18ee7d3a18ba04392394395b3a6eb
SHA1 90f605bf474f65e498977d9dc0d6bc7f567d9bfc
SHA256 cc2286583713d5a76fca2d5232d257433b61ebe8c5845b121811e710957fdb98
SHA512 26d37fd6656dff1554b9017cfcbf4dc7159956d9517b95842693461a8a5fb54e7f11300236a553dc3845b1be190db295d4f698836b26324bf538cf4d77acdfce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5dfce0d87d514fbd6cab7eff33f46ec2
SHA1 bd959e0ab199654548644f8836ec05079749564e
SHA256 4bae8974058aed68ea0739b957070dd5aea27ba1b0e012362c90de1e205cf918
SHA512 c5b1660876d3bd6a6a325cb91f5973bab2bc5d22ee0cf2655c81c97be4072ce29f5e606ee55c1d4a5c468e2b0827953e64b1f112e2201399092be9bb9a449d8f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e06e4d908165a5e850078f1576a6f804
SHA1 ed8be1706c73aa906d55020b75cac13e2a4c2d60
SHA256 cb2be9a3c85d320b8c2dcd1d40ce4def9f5c16977f5d5098e304adc179f81d40
SHA512 e30227e4aeb5065c325b3e3ce3b24e096a37d751a0cc0f9957fa3edddf074a5920f9cb7c6e2f13825e1e98d594ac56c52ea2cba301f9e8bcf55d8ca607cfe400

C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe

MD5 911c020a364b10fe1de664c01de4534c
SHA1 8731aee51722d2e1604864eb8f03abe3e6d35441
SHA256 cb84418aa6ff71e927125f05cd74b10cef07b40fe19a17f9ba5c3bd57f2d9591
SHA512 7e2c2259dde1fcb1a10a3864b1e24f892fb28d1c0a9a8b1b32d6b512d9f49b031cf6119f55dad008f0b2a5dc87ae606ee0c2918fdc44fc307d56bc933537db7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 373f403c502dc290173804e1ecd213ed
SHA1 80dbd6e51741f37d0d7a0b0c5014842e53f3cdd1
SHA256 2777fdbb801cbee5e7286b83a6e336e4d8a2c6c580c02303cca849992f175ade
SHA512 7a4e9a0af5fadf2b1ea90bd4e5314c6b3162d5abe20a7cc4d80ff6cf75a379972bcc863d0fd69d0302216356a3ba8a65c35a48b57e73c6102b028153839bef84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 6cfaa66bd88c41a887fbcd1c8a7fda50
SHA1 80a696e82c16d014c55129828cf8b62eb5c725c4
SHA256 bc546c9776ab0fe1abcc795a3a7cfd0092cd8019b544604d947d089421fe97e0
SHA512 727808ddc70092cce52e48e0aca4b5f8bf94c895ca334425141b979b6a3a4b52387a92e0633da262c10cc7fa40efabe33041bdcb0b81330bc6ede575b407ce34

C:\Users\Admin\AppData\Local\Roblox\Downloads\roblox-player\ff6b65de0e41d5bcb3b4ba09a6990c0f

MD5 ff6b65de0e41d5bcb3b4ba09a6990c0f
SHA1 f962a1e4ec9c7d2ec4625be854fcb505e0be4427
SHA256 41f6a727a284fc75e82310a6c7ddb1b609c89cefccf3a25196623d4f9c524e36
SHA512 d6f6d8d62ec74d6b3800480152b98d66d78d5c528e305064bf1347bbc18177c2708a626cf7969377e9abc6a4e018ecaba046b3042419001bcc239ad263c0d435

C:\Program Files (x86)\Roblox\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MD5 610b1b60dc8729bad759c92f82ee2804
SHA1 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552
SHA256 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08
SHA512 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdate.exe

MD5 4dc57ab56e37cd05e81f0d8aaafc5179
SHA1 494a90728d7680f979b0ad87f09b5b58f16d1cd5
SHA256 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718
SHA512 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdate.dll

MD5 965b3af7886e7bf6584488658c050ca2
SHA1 72daabdde7cd500c483d0eeecb1bd19708f8e4a5
SHA256 d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19
SHA512 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_en.dll

MD5 4a1e3cf488e998ef4d22ac25ccc520a5
SHA1 dc568a6e3c9465474ef0d761581c733b3371b1cd
SHA256 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011
SHA512 ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdateCore.exe

MD5 c044dcfa4d518df8fc9d4a161d49cece
SHA1 91bd4e933b22c010454fd6d3e3b042ab6e8b2149
SHA256 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2
SHA512 f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\NOTICE.TXT

MD5 6dd5bf0743f2366a0bdd37e302783bcd
SHA1 e5ff6e044c40c02b1fc78304804fe1f993fed2e6
SHA256 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5
SHA512 f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeComRegisterShellARM64.exe

MD5 7a160c6016922713345454265807f08d
SHA1 e36ee184edd449252eb2dfd3016d5b0d2edad3c6
SHA256 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9
SHA512 c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_am.dll

MD5 f6c1324070b6c4e2a8f8921652bfbdfa
SHA1 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf
SHA256 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717
SHA512 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_bg.dll

MD5 8375b1b756b2a74a12def575351e6bbd
SHA1 802ec096425dc1cab723d4cf2fd1a868315d3727
SHA256 a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105
SHA512 aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_bn-IN.dll

MD5 a94cf5e8b1708a43393263a33e739edd
SHA1 1068868bdc271a52aaae6f749028ed3170b09cce
SHA256 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c
SHA512 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_bn.dll

MD5 7dc58c4e27eaf84ae9984cff2cc16235
SHA1 3f53499ddc487658932a8c2bcf562ba32afd3bda
SHA256 e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98
SHA512 bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_az.dll

MD5 7937c407ebe21170daf0975779f1aa49
SHA1 4c2a40e76209abd2492dfaaf65ef24de72291346
SHA256 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9
SHA512 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_as.dll

MD5 a8d3210e34bf6f63a35590245c16bc1b
SHA1 f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693
SHA256 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766
SHA512 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_ar.dll

MD5 570efe7aa117a1f98c7a682f8112cb6d
SHA1 536e7c49e24e9aa068a021a8f258e3e4e69fa64f
SHA256 e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01
SHA512 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\msedgeupdateres_af.dll

MD5 567aec2d42d02675eb515bbd852be7db
SHA1 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37
SHA256 a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c
SHA512 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\EdgeUpdate.dat

MD5 369bbc37cff290adb8963dc5e518b9b8
SHA1 de0ef569f7ef55032e4b18d3a03542cc2bbac191
SHA256 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3
SHA512 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1

C:\Program Files (x86)\Microsoft\Temp\EUD53E.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe

MD5 60dba9b06b56e58f5aea1a4149c743d2
SHA1 a7e456acf64dd99ca30259cf45b88cf2515a69b3
SHA256 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112
SHA512 e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7

C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log

MD5 af0a577562cf648ee314533479660e57
SHA1 82ca3360b5796278cc9a8b1b08f45710d642bc4d
SHA256 cf0e94fb176507662d01939fadc76809e41f01d6c69a9fa5bc228424c15dd1cf
SHA512 7a3fbdf857cfdcb876742897622b96582b8cb334534c0be94af79c61e38aef698eae66c3698b765a54134696a46c0a490674cebe6c5545c2bff63c7eeff64f32

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2e7dbfa96a6fa2a97c795e4ee311b4cc
SHA1 75916bc58f59d0f946e3963ea7fc634a6b99b6c3
SHA256 0e180790c30022ded09b7c4cd8d0a51c24ac23f0083db3dce262123c00da6d2d
SHA512 b98ec2d78371a1d2fd509f4dc46d7a48333a8808cfac873a84e2444838fd3f7107f945e4b52f7a470c7c624100296a44661cdd0657c000774b987683e8d1d8dc

memory/4580-1493-0x0000000073580000-0x0000000073790000-memory.dmp

memory/4580-1492-0x00000000005E0000-0x0000000000615000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3760cc227b5045b91e89ca6d9bc294b9
SHA1 f1622ddbd048cc73260ab5adb32bf9af047fe87c
SHA256 afc703cd9b7da8ec86c807490483d81504dc7db790fcdfbc243affd4cb5c3b1b
SHA512 a16ef17372a811588c463db1c2f48b92b9f01d2558652767428c0eb266c0d80ed6a028f965d8344956d8af656717278176f4c0491af5611e9166755324324030

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}\124.0.2478.67\MicrosoftEdge_X64_124.0.2478.67.exe

MD5 dabc3160a804b9fadd89ceb0fcecf388
SHA1 b52f15e866a18637683bdf0ea4eaa326b787396f
SHA256 53eb39a92ee0d2eb94f6d33c015097bddd9cfe5c4129d3ac9a9facbfb5087bfe
SHA512 74fc0f21d7cf99e07c079224e2af8a4a51bff98a97bc471cfedfbd3a28d3ee681fbd63fa7239948c3c0bf4f9af56dc582dd128f8c08b54cb73389e85f949f431

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 83dfc53eedb09e7b2ff1d9c96bb945ae
SHA1 17ccb6c8491e1d44334ea751726d38b95f0c8be3
SHA256 bf35f95c79f0822827e543a17066f380cf29df372cc0ebfc70fe1c019d0d46ca
SHA512 1d9f28d8529bf761204f93f12b8bfcac5c597f02714cc876dc8d4179bbdac3981a3ee594d6953eb1020e6630705a3067a1581c723c2521eb43885973c7ad9c3d

C:\Program Files\MsEdgeCrashpad\settings.dat

MD5 8f6f92279177f3e7a7ce34315f5cf8f3
SHA1 0b351ffee6738568b86d8ae24a7002f491313e9f
SHA256 75522b95b1176e62db7e37ac774ae66e1b13760138dc9a69a4616816d19aa0a4
SHA512 30b94f93a04fe80b5f3365755f7f22ea79b25eed28f0405ad281d9516c4069713c9bc2d302ecf1c14cbaa39be73fa326c694585ac40d51feca6a8ec6ff0b9b7b

C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Installer\setup.exe

MD5 c31297188ec9fbaa60449f769339963e
SHA1 8502d9e0cef18137529f0a46ad6e69a1577e6cae
SHA256 2e2eff110475dd3dfd732ab514e4692032e67b2d228d0081634a87f45cde5ff9
SHA512 9525e3e08b953fe36270c7b4868959e9bded055c5577e5ca94d79606b671e6660d180f763b54a276bf356e82d7073901c373e0b40cfca924cc4b38384c20e22a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9c80d30c80ed2025f9f23af215c8b00e
SHA1 cf526c57217bb5310f3167641526b9e800fdaee4
SHA256 f8f28c503c77f0f21c7ae8a2ab04ee769afab977ff42bd0de46232f54187e5e0
SHA512 2d28abb6269ae6abd306cec8a94035c134f783283f7d04daaa75136dd3b7c2f72f16bf4344491cb67906ced702760ce2b04f136c8a0e744d51190f277303cd54

memory/4580-1563-0x0000000073580000-0x0000000073790000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 491fd644210280d904f41ccc911a17fc
SHA1 c9893d80fe15f52f0368661874aed47e4d0f9cfb
SHA256 e278a92e48098f6ba9a03cff2f98780edab5e8c37d3a87dcd8384e61e58073bf
SHA512 d5e1fa4e5fcabf2918f586087775775bb8c57f2b1d973db4c2dfe4f29798402bdb2e05b4ad2db8efd300e5de51bfc5d2630bf2d3bf46ca2848018e7b2c4f06cc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f5029628414ed5b615569b723b108316
SHA1 b239f61bbdb37e2f30aa8a8382b51469da94a54b
SHA256 3101db76ba9545cac77bc5a654cdab5ca3800247d379fadd979c327a7d394071
SHA512 6d12198511a5704f8e35159a6dbe9e3929c16437525deb14e240c43f52e4b4558ad63638dd71c996a503dafb5501ff9e469ae596091b7015027195d65a662cda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c6d1c310f70b2786015a58ed4d4f58d7
SHA1 cf60c314c073608a6826b8fd1d64939761a27244
SHA256 c8da6fd8c35983abe961385b552353ef9b183fe52b269e54850246cd36abaedc
SHA512 1ce62d02c6fa0ee9ce17495196df36521cbeb9b19e7e635057c12d1451c9c04273e7794f407529ce87bfdc97ec9b210c319c010186358737a07b348a042f93b8

memory/4580-1602-0x00000000005E0000-0x0000000000615000-memory.dmp

memory/3548-1612-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp

memory/3548-1616-0x00007FF81BAC0000-0x00007FF81BAC5000-memory.dmp

memory/3548-1615-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp

memory/3548-1614-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp

memory/3548-1613-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp

memory/3548-1610-0x00007FF81B9E0000-0x00007FF81B9F0000-memory.dmp

memory/3548-1609-0x00007FF81B9E0000-0x00007FF81B9F0000-memory.dmp

memory/3548-1608-0x00007FF81B8D0000-0x00007FF81B8E0000-memory.dmp

memory/3548-1607-0x00007FF81B8D0000-0x00007FF81B8E0000-memory.dmp

memory/3548-1611-0x00007FF81BA30000-0x00007FF81BA60000-memory.dmp

memory/3548-1622-0x00007FF81A940000-0x00007FF81A950000-memory.dmp

memory/3548-1625-0x00007FF81A940000-0x00007FF81A950000-memory.dmp

memory/3548-1624-0x00007FF81A940000-0x00007FF81A950000-memory.dmp

memory/3548-1623-0x00007FF81A940000-0x00007FF81A950000-memory.dmp

memory/3548-1621-0x00007FF81A940000-0x00007FF81A950000-memory.dmp

memory/3548-1620-0x00007FF81A920000-0x00007FF81A930000-memory.dmp

memory/3548-1619-0x00007FF81A920000-0x00007FF81A930000-memory.dmp

memory/3548-1618-0x00007FF81A890000-0x00007FF81A8A0000-memory.dmp

memory/3548-1617-0x00007FF81A890000-0x00007FF81A8A0000-memory.dmp

memory/3548-1630-0x00007FF8198D0000-0x00007FF819900000-memory.dmp

memory/3548-1634-0x00007FF8198D0000-0x00007FF819900000-memory.dmp

memory/3548-1633-0x00007FF8198D0000-0x00007FF819900000-memory.dmp

memory/3548-1632-0x00007FF8198D0000-0x00007FF819900000-memory.dmp

memory/3548-1631-0x00007FF8198D0000-0x00007FF819900000-memory.dmp

memory/3548-1629-0x00007FF819760000-0x00007FF819770000-memory.dmp

memory/3548-1628-0x00007FF819760000-0x00007FF819770000-memory.dmp

memory/3548-1627-0x00007FF819650000-0x00007FF819660000-memory.dmp

memory/3548-1626-0x00007FF819650000-0x00007FF819660000-memory.dmp

memory/3548-1636-0x00007FF81A480000-0x00007FF81A490000-memory.dmp

memory/3548-1641-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp

memory/3548-1648-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp

memory/3548-1655-0x00007FF819170000-0x00007FF819196000-memory.dmp

memory/3548-1654-0x00007FF819170000-0x00007FF819196000-memory.dmp

memory/3548-1653-0x00007FF819170000-0x00007FF819196000-memory.dmp

memory/3548-1652-0x00007FF819140000-0x00007FF819150000-memory.dmp

memory/3548-1651-0x00007FF819140000-0x00007FF819150000-memory.dmp

memory/3548-1650-0x00007FF819040000-0x00007FF819050000-memory.dmp

memory/3548-1649-0x00007FF819040000-0x00007FF819050000-memory.dmp

memory/3548-1647-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp

memory/3548-1646-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp

memory/3548-1645-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp

memory/3548-1643-0x00007FF81A1E0000-0x00007FF81A1F0000-memory.dmp

memory/3548-1642-0x00007FF81A1E0000-0x00007FF81A1F0000-memory.dmp

memory/3548-1640-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp

memory/3548-1639-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp

memory/3548-1638-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp

memory/3548-1637-0x00007FF81A530000-0x00007FF81A53E000-memory.dmp

memory/3548-1644-0x00007FF81A200000-0x00007FF81A20B000-memory.dmp

memory/3548-1635-0x00007FF81A480000-0x00007FF81A490000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6423700a458833133c8fbdfe2f1a0a7c
SHA1 b276d271d379f355a89f36184e7ca20680641540
SHA256 f6ce499ae89c4d704a3b346d5f4e72186a89aa2b36546e9dd6af7bfe16e4a2fc
SHA512 b68ad236c2284132dd5ccd21dcfb0e373b34fd430cd2a90756897c285e52ed2532788c6ea9af7579234add8542b16db367ed7931564d4b202478cfaf5911c348

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 73e8bc88afc32d5b3bfbbd5ee9aadb6e
SHA1 1be76a99254db6653ae3a3ebe3d921d094a684ac
SHA256 267179e836259b54b9217d3dfd52f27ad25d909c172ec49da182da81fc51fe3e
SHA512 ecbaf8d77c24bd4ecdfefcd6e1459f5ee6217f3c711e4199a5e615757bcee69412903f2639a32a33252c9b44794613455323b5cf9dbc20e27592e4b33416f6da

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 21409d64a0739f31b00f9b4790547b4c
SHA1 b66422433fc897f2c50741d0ab31f56f70462271
SHA256 605f7ffe3f6b89233a1f57dc887e9854b87bd353cbb250e11b0214e686bbb14f
SHA512 d64679d46d6f923f0c2f53951cff5b280fef84c3e1fc741b81e15bc53a6360352ed5acc6fccf8bf7f1465c774eee2fbea8c0d2b661e65f90ff2e09ebd6d32fd8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1d8c5ac9399b6de0b7300e1e72aac209
SHA1 5c0355311a44e8edb0a644f684b490a1fac63218
SHA256 47e47c7249e4826c094acaf034c9f72e4c4e80e5c2f450a0e1fb1d5a09e45d34
SHA512 84edaab78cd4aeb4b039012648fb1c23de9e22118beff329bed019e5443007cc50282fee5080499c62a9114323e1fdae0aba293bcad02a98bb21479ad82da47f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 234a6bfe267a7027d3fc7015afd017b4
SHA1 2609e0fb98825118b2faf09565885b341a674cdf
SHA256 d5c026b4780e83c2fb1b42462666294f68d9594d364f4dfef22ff7f82f9670d3
SHA512 9f740486abe9c13acceffe9b8ee39331961233dbc4cb4335fae908b664112422540475db6ff242cc22c798742249d3eb4b68df9686428140acb77c52a92e7c0a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 913cc413cb5d20adf944de09a10fd226
SHA1 c8ad5ae23720527dfc1460450ec268305e61487f
SHA256 13f92198a0d151f00a03ec8fcfed00cebb7a0bc5e78eafd6ae2300b343e31bcf
SHA512 4a8c09268b2c38fbf63e75b366c45faffc82049b03094d77f8d94bab62b0390c91a3c3a41d8777bdd09274c7effad31da6576a518163e9dd4c7dc29f132e5d0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0fdaec4e53956aee616e5eb3c8aef39b
SHA1 928cfc37214b1383e030d5f18b02dcfb73c82fb7
SHA256 c8072e6a1c5ac456dfe00be63ac405d1887856da8b922f580b3124c41e102390
SHA512 6fce84b948ea9851247baec05584e3b76166d991df5e9b876b5e090357301feaf29912c9f6a1815c44309d4dd92051fcd6e30b4179a888d947886dd75b6055d9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eb720c5a4527c6856df2407d1773a66e
SHA1 7c63cc9a692653f484e4ffff1e0c714c3b0cd91a
SHA256 5d2bd8d558c82861069aab9df2e23ff3fe88758f426a56ce86317bfadb1c4192
SHA512 eb590a7dcd0daad47b203e39b862bd7e7321e6d25fdf3cce27dc15d641a1ebe8184907551466951f9a9ecf6e5d04162faab5eae78daaac9866b40c3c586ce906

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7fdefc2db9c4c405122bc1dd886a581d
SHA1 8d6a5680f147bdd49edb0e5d6c70547becf3b519
SHA256 d41261cb786eff932c9d4a2fa3b3295c9f869c5c26dfa94cd3f5c380d339b04f
SHA512 c301f35758eea04c4d8bae8d4234be28a64c51321602a29dd69fdf787053bcba8f1dbd4e591f5cf90537ab0dc2ec8d4de430e4172c9e243d1e5e43a63881ebe9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 425eb608433262fffa008acf36c95a2b
SHA1 c8f23e8b6f938d5bbe474823e269ace3bca6222d
SHA256 bb13f331e04f5765bf1d6a95c89534733503d6b8ae800e4c8437beaf92d08dd5
SHA512 ef0e2fc740cac3ccd2b2f4e939f476747c2d7c6c3df8eb36afbcb9a234348e13281d7621fd87e3897f290b9ac8063128cf440dee0cb2aa4a8bc2947d78fb2233

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4ca9daf556a388c4cd0f7db53ef50bd9
SHA1 dbd3a2891544ddabf573e8974784e9a47977acc4
SHA256 ca9cdf6cd34893fd18a5c23440917ef880c65a844ef332021333379c59c913ca
SHA512 ddaf5c7d7b25314db58fa90f30a1a6176696d8f607639b782af1be2716baf1510909bb944b3feec3faeffcd002f41193eebd6bafd9cc85b4e7856e4c1353270e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1432349d56dee9b252e21ed14fd1b42f
SHA1 c92d4c3eba3b2f99d0646d5f002c6b4ef2917fc9
SHA256 20a195520be444bf942be0dd85667e064fe8e8452f3e6dd15c1afbbc1eba4eba
SHA512 05579510658e8f73a04fd1012e658be37025d189b5766b8d061671cb1ce4fbcc144606ce0b33aefa2e88a3bf4fc48702abf90b379d7f7581e8265534e6677374

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8a7e5ca5caf42318113143f741b67684
SHA1 be38ef80435c098d9ce516aa17d0fda19566dc12
SHA256 ae98b1c0e9cdf76533d57e5e9923ac6a424a6f39010d60920eac75b2bfb65da9
SHA512 58b8735505a2ff2e22d222a435fbb7845c5d0133a4f4f134d2c655f5cd1e965d0e732d7a8031d06e2f1fc4e99a02840275cfb011c5e9bfa2c5eb5c52a671a684

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e6132d5c582d50a63863992060a795e9
SHA1 530008245213729b23116154a1b7149a32f19447
SHA256 fdfd1d2eb6ed0921a4ce000da67e5a1a9adbd0892aff8a186a9c205d7b5c7b11
SHA512 e46354753176c1fbb9f5958296bf7ed28ccf8d047df45f6ec19e5cd539599a382887fd72a536374feda0008de6a37763ec28319105bc28d38ead1c4ebd43c207

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 994c94cd46ea24b800c866755e094fc3
SHA1 93d806f135caf3d9c82ea12f6ce4d5809f434f5f
SHA256 0b3915f824b2649cc19ead925276e7e3d6c9d320930ec6978705587e585a0d7a
SHA512 9332adc8eea84b73ad5887c14fe938f8506713e877c0ebd06dccbb4e71f76a70747055a752ea39582b0ec7ba28e5f91a31d3c4cb87be1aa3406d290ac14bcc55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7a428bfc5fbc6f72a4ea12e849dc22ad
SHA1 1e6184b04851415f35b5c4de10ee192e593c6028
SHA256 6dab574ae4a9dd3a1e5fd28a1c28e3e6d2b9acc300993c295a73d66a87928d66
SHA512 f9ed038bcf9e3efcac17c244390dc9192e2faad0fd2b9ecef831d315fe8ee781555562c194192f2b13858c5372c39df73ea5dc49c63e32c1c45cd47fc31e6221

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b9b6a59a4130c627d6859a08d544fdaa
SHA1 e15e0d1e323653b1983a58daaac511e3d8a0cc7f
SHA256 86a88e0cdae86ce096aaa3d2e30da52069f9e95d80680baf59d5bec147b101b2
SHA512 f1fa6e1de0151b1ca4dd0278353cee1f455491679819142b8e44cffa51479789dba41c1d688a0c7a6e58db51a6361c8513def62931cc1db677802e954bd0752b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 3a495908c0c239ac957bb12d4773728c
SHA1 871d50b148af97c24d8fa08652f17cb6965e333a
SHA256 5bf1161a5570bde5e3cac9bd849cc6cb3cc302111f8cc8db2258b9123b153db5
SHA512 3f2a691fadb6d89c4282ce09cd675f5856999e0842d2b1e20d5697d79540b78d8f60fd18f13b21431bc2969caa7b8606a608524cb466be14b49441eb3070a2c4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fbe3519f28446d4e1133212f7c401095
SHA1 445c316ac4e712a37bed95f5d7c0ec6cfec18160
SHA256 9de9e09f4bfc8cc6bf44d2f13872dd72a28d11d3c87ab5f54924c3df616c63d2
SHA512 871eb1d14e350da7d64bf8dba6632a34b9b36de7b886a3a0a008a0a91203dd1c6d6394133361763c10bd1069ad959a0f722184e29735f1a3fb1a1712811dd867

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 12c82ab84944084a1d2ef422def30803
SHA1 69e1ffba90f5fd6ac3ab96ff6b0168a31c831887
SHA256 12780ceafaecd37e0d9436641a0c177d7c8a76074cbb412808f6839f776e64a9
SHA512 c441a3b1d639a05adc6547fc7bf932c34a2e27f5f8f4c77827122080db55cb5049430e0d42e9dee3f86947804e2d246b6d50557283018259d91d48d6fbdbb892

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 90817939f9d63d3d658def9d7f148b2c
SHA1 c36f437011dc9cfabce8f3e7f94b84d56b2eaeb8
SHA256 9cfde4a07bf3761e58facb1023ff0056fe212b612b5007f05b121e01a21f4153
SHA512 590f0e925bc78043dc1922e8f15183c262454db2f3542e59abbe269e8d239a1c7d8e54f83ffc81cb0ea9d4344e8a2b44f4a5322d4fead641c9af4d73e6233c87

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a202a8db91274942d26e7a8f5e30fd10
SHA1 df9d17610c210c57c4e56c06bc32f834362c81c4
SHA256 c0b4f742dad5e6c3853ea8e35ef6bd7a452b23840c214a9041ebdd7ffb614150
SHA512 b3906dba915e16c4b3a5779ec4e6afe8f7fc8e15a0bbd072cf56dd1648cb99c19e5ddc84c9cc3215305284d8d676f127fab0989fc27980e450147d1b82875499

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 90e7ee3e8573e4e1b245ffb2363db79e
SHA1 b5f528fb6771db97be42f4394ecf2b03e96278a1
SHA256 99a3b5bbac7b46592a3fb4905c6ba69bc25f8a61f3d505faaf5c46f6a0050aba
SHA512 a1c07cb8a43d62be93bd8edd1927da263317c65d9572a26291a38f920af462068ec9371ea611fc555df68fd18930ebbd48999732662c12e0c9e3c7183d43f99c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db7cc657bab9c6f96e69f6c2a56baabe
SHA1 effe53e118a6bd977feea4055a0a1a7917fe7ca0
SHA256 5d7ba4134ef7569737626a22b16366691aaebd591bff474ffba2d234d7e976a3
SHA512 8d0a56acdd9d1c72409337c69e24903c72879cf51176c94aac27ba8da6354feb33b6aac06e9a5155fd0197d35c3e51902f4a11a8480da27ff9c2cf4d5dc7586f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

MD5 c4a5ec264888874eadc279342c3c6001
SHA1 0ac4fcb62f11e29cb030c58b68d72c3a4e5e045b
SHA256 867da22209a3e4cacf2671c429d480236134ed16688b02e54e750a64b2f5e2a2
SHA512 9fbdbe6b3a59a7d4aa5626ae372beaf1bcf9e486c2418fe9b695a0ece8935a145f5d016f97d0b03fd23147fcf81e84adb5f4acb7f1f7d296ae3436cb2aec1004

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 52db536e8b06ab23b70d74d8fb32251d
SHA1 ae4150d6aa4e12784902490cafd525dfedae5f72
SHA256 93ede3b24c2410d7bd8299feb29d9ad2f4f224191f0a5caed75e5024f1593569
SHA512 182cdd142c11dc707d580e0ecc6bf834d163f35129d8809f57dfe8f9944f7eed21577836975a831bf0b734733580226235e95f4f278af72c777528f7518c437c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 13adc2bf21f5b9e0e0bc0e15741d1942
SHA1 9c1bbd8fdd2848ef37f23d8632758be834d6d5e8
SHA256 34821cdef13b77ca69ca7671c85fa5c329d3fd48954d2271b640536f8d3e3d34
SHA512 8281ead458cca54f567441b003546f48aac2ad6b06625e1c3250b7329ec5d797f958377109adb0fe533b428a000109907c62ea1d955a5832959122e3aca1435a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a6ed2030abd85735b60c96034f961a2b
SHA1 506ccaba062e9c7d7b2fafde1a0f7374e00be6a5
SHA256 039a9e60e7f06d996d86808e6d61f92aad9c1467ad1bb2c4b64c4652f067c1a3
SHA512 468e651387233a671463c455955bcbeaad22f3766352477a68316ed0daacc5a640697f907e143056cc54d8027176d399793a9465691235f8864913a765b83fdf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 6976d40f3ae995feebbd50fe97e3402a
SHA1 24aa8048dc29cd2e0d89dd715fc144e6d323b101
SHA256 56a04b76e5298ccda3e572b919df18aca05efc62015dd52d09a731da6704c4a1
SHA512 b3eaa012f676a63196a1656ebeb405622191ff92a70a488876148c3ab35321d5a115d854edf4c9896cd8d018651e5d25a9c6ff7ec34a79d178562d8bd99856c2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db6933b7c5d86baa6df7444d9cfc9806
SHA1 353ff38941dcde7181692d125db9eda528f9f13a
SHA256 d88f2bc727eeeb91958786094d4b592ed74713b9f4f8a5f81c32a631aaefa273
SHA512 d76fcd1e4e2c9c8fbd70050cee908d006fc73554d358596a080205cbc2d1871b321308c728d1373a8118cd6287c93560f4b981809e537dd750a5a649efa18c83

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 455bc1ba69c5687b68fd2d162241cd81
SHA1 9d5398df23f4c4cfa76257edb4fe4cebb9b87805
SHA256 929e9b6c0826bd3857c8e6e95c9c53821952d2075a1fb22f12bec7857384579f
SHA512 a2e8df2cc1a2d3cd40177fd85fc99b019705f674c07db2eb848e82ce729eaed839c00a8cf6f9f0d1b8f7610149858afdbd54519a5bd51bd77bd0e86ec8544885

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 46ecf1f933f05155318a5fc3bcb71c46
SHA1 ad4026fe86e407f128a0b85890e5b00f9dc85396
SHA256 919eec1bfa0e704eee00b540c3dc22f19939d2878ac636d3f99f1c9d4330b4f7
SHA512 e78fe435b2fa38a8e5a2d5df26c1ea0658a2df85854cd160aa40f41b5dbc844a0581dcde9a3adffa78e878cc560301064cef633923b7c2a022b5fd10235b96d9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 2a00ccaee1012ead40298c6159bf534f
SHA1 93fcd27c1e16e5009f66a78ac59f2f54f71428e8
SHA256 42edc46a98ba1c7ab05916b1c2863f4cf439faa2a2e8418d6e0155ad88912a67
SHA512 fe89956753830ddb61b22861b5491d7fe9662e485e40d4aca6b1c35198635c4051a40afa4f730ae82adcbdec7b51d984b9988f5d454af1a8b23174d8d5dac6b1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e826ddf92be4c089d646b49b7d5184ee
SHA1 32d346b2877c3566337cac7e19124c2b3c515a54
SHA256 35efc3c019ed4a4a81a1a6e588f35a5cd52e5de8fb2e66094eebfd38f5e7df92
SHA512 fd74b41b95916fb7d9ffe72b9eb8eb9736aeae754efa5fe04e5434ff71443b05c20bbc8dd22faacc421984c699be282a11a29219b07e49403fcf8c612689e592

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 09fef1a13aa8e0d7c70816df114f3be1
SHA1 5c966810c182cb1ddc95147e4bb24801cc73c501
SHA256 304ffc6eb63733e01f9bf584d8f7428047e1c0f6fde45540e170cd9af8c63920
SHA512 73e46c79f9201bcf985f042117f5b0e3622c9b021a804abc723d77f2887073a3298a6abd72440e0249256e51816558e1950958306c3fd2ebb597dd76190d9b86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fa908c43fc7f7f463fe82253dd242fd2
SHA1 26fd75a314e4ed445edf0886760fbf2b43bb6a65
SHA256 8a0f553113993de30d3b6fca8e2854408648c883393fa5f6318e15a2462ab977
SHA512 c1cffa971c28e5fd0fe20b2ed5454c925bcae7dcc027744c47bee508a2619ef6087af578478235ea82311db999999953b02919f2b3f4df1f615e21501deba2f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 025429fba2a86400f328878600a64bc3
SHA1 c1219b450fe6ef2b53a974c40d205315cdc8196c
SHA256 ed946baeb052ecbca2b71a00d08b652eec218131763163d02a7296879c67ae90
SHA512 48d86fd0d23156495b4afff08d4ab5c7739e13c999e2a9e6750003aa0047f4f34eecc2f60c5703d077ae8233d242f4da6eadae0059777ef4c028929cd845baf7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 faac0637e9de4b384678d5d39c5e063e
SHA1 8924acfcf2a1604d6a8698bc6f7a07ede699032b
SHA256 c92f5b5e1dfc127a80b1b01eb32deb450e3d65211317f37ef0d2a848e03900b7
SHA512 cea89b612b54e53a947948419f6a2bba25b068cc0d540756f0642c6593ed8df435c9eb5587b2f3c820989b267c67c8e4719a886a3d8dd0fe6782c5e693dbfdd3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 41a137c3405f5513f75b8dcc520fabd0
SHA1 6f56a5db6b0a44e48401fc2b6ee681a768bd86b0
SHA256 f0cb003f21a9ea1b52a2460164035145a3511ae6124106fa6fe4660e04fbf736
SHA512 5e5545cbff2931d19d918e4d96566394decfae280fbd1f0f53fb1d1019cf50a87dba7dba712fcf8c2efa75c1ae514a818ba2dce5d8fcea7c5a3dbd6530189779

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{1FAB8CFE-9860-415C-A6CA-AA7D12021940}\2.0.0.34\BGAUpdate.exe

MD5 3f208f4e0dacb8661d7659d2a030f36e
SHA1 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff
SHA256 d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b
SHA512 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 68d0d73368e1f8c69c2b125b3e176753
SHA1 cbd82d4fea270606da8a48a634b2223c3cdb4170
SHA256 df38fe29b918865293a3f1893aff9be2fa4d152893ae316fc1c36bcd81f771c6
SHA512 d61969776ddd405e5b307703df0de7ef3b0802e393a1512feb1f8c66c3de7840c44c3a9d6d1eba10835ecf199b09157c18194628570415a3763af62cc9f19e47

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.185.29\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe

MD5 b18c705b3c68cc49d9bf3649abc75c24
SHA1 6dc8963dea0f3185368790dee2a346301b4fa24c
SHA256 c2ca3135f3cafd79bf90d4cb3118943ca17f40e0d651d1fc32b1b3d22d1412aa
SHA512 7ac302c1e85c652bd897ce1af812950cd23a53c041af82fdcecb2314bbd1667bf2fc672dea40c21858e64befc9bf60190a4428f0b41c30317bb0e5ec7c00f71b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7bad7144bc373aef3985317f53415886
SHA1 0d8a3eb3d9fdd9745d84df15d8286b448a58ba82
SHA256 4a0f0f26f3d6cf907447158e76bd99e5d31ba5415d54f4e1f8c11b6fc1913035
SHA512 0ebc5a0f479227277384b3dbca11252384f432aa80ba382545a90e15341994c4dde590b47771c1a04a39ea0e690b16a16dff8422293ba271a27c3d1fa75b768d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c3803000298bdfb5cc943121c7054245
SHA1 4b3fc70bd4eef31ec4d32c5600e0446090774534
SHA256 664cfb66fa28fcd62ead6d5779ddba358ea75248127756922dc0edb6eeaa4b4c
SHA512 927275e0301536c6ecd99a3d22852a6ae776019fa4a1000a73f6f650b9eef098f215a8caf8f5ba18d9f0df6ae8ae420debbec54583719aa2ae8c8c011926d664

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ac8a053b5784ae435ab6f7f8c52f12aa
SHA1 fb9fd26ef67ef2ea55812260e1dc7d68232b6336
SHA256 d35aef4d0fc82d0037a14350a67744bc3d959bb5d25b3fcd2472c70f4834062f
SHA512 0c4fc00e681a1a902f419479969fddbe7a3f5cafe080cf4bd4f9b1bf7c46a8b0db9c53796bbf277505bb199b3a025f36bb143bf89798758c18dbbd80577372c1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 9a91686df4bc6c367e318fb95bf55f6d
SHA1 7cb56b5648a7d88b5bb7dbed0aff6d06413c970e
SHA256 9ec0e0ef6a6e0a39e3ef4d0c5253cb69e875223087731d5a9837a9161f7050ff
SHA512 80acd20ef745744ddeaeb97afd8ad0348fae35b880f37bfd986b98142e183ecd4794a95cb7f93272f28c1256b5d2f87c7ad715dd67da2058c34a70de989fd873

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e65e84337f52d5bcddf1b291ffc2658e
SHA1 2769deaa2baad8560aaed38016a81621b690098f
SHA256 48bd670a9319e731ccdb87301be36dbdd031d827c1dd1e238fb70202862590ec
SHA512 c3cfa9ffe64bf51bad50ecd10d48c46037a0fd6c0b1214a7052eab251ae844c609bc2bebe70a926d29e6582d91c64952e656e47e54cb9bdab5ed79cc4216b636

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 84d942a0e03ec75fc20e1872bfe8030e
SHA1 93cc0c9254c840a38cd866a7662c07412e0ddac9
SHA256 185cf73b8e40f980e19381e1e398a2fa6f7654ca107a6fe4bb9953772ba15dad
SHA512 3faa8daa0df02e4719d833cc338c17458cd8687dd8a30d8f593edf516b0ededab5e9af31425c407e7b605b72e943f9660728692632c3e7339e7b62de3793dc29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f6871bb314af313c4a5ceedaf0b4d8ab
SHA1 56da253cf1514de0220a81abaefcd80472d06f64
SHA256 14eaf75b3c35b882ae75dea8405a6fd19ccc0171f9a3c9e79a2526d87bff88cf
SHA512 6ec937f7833faca25f63eeb4e241f79e64f5d4b981a208520a5cbbb8beda3fa34a14e3c7a8b0cee87409c4c74ef42c9b5453e6d30fb3604c0ffd8acc059a579e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4a7ac903d6c77e416a810281255226dd
SHA1 16c300b942cb90b3cfd1b40c6fbfaabf7d1ce082
SHA256 bdf1ddb8834a716aa8014834d5f9a4955e4672be89e606fb2110ef87cc567fdf
SHA512 80a9f4b047c90088ac730c37562b28efa87744b3d4f121fb339161046aef296cd00688a365e2ed181f1e3be6e06c481dc5ac6f6f15e18d31092a7fb491729df2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1739e35809a1262849c86d263b420111
SHA1 a6cdc10bb53c8c51b5ada2160c73b3e364cfea81
SHA256 778cb4074a9b118c3a11dc1685595eea64477a88f6380467bff211d6ed170509
SHA512 7210129de61932fa1d4e58b9cf6d0e9dce06e12292e05dc8023d7923984225d468ea1e3a055a1867b319ccfd4326da08ae4b7205643029b9f7d4de154a2a4868

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c1e1b8626dd53b60890da5d2ba3b2dca
SHA1 243dcdc8a46c04d78e2a398634755065ce73a654
SHA256 fd0778fce2be2643230597d13212580729a097438d3b3625cc2e5c5ac415b9c2
SHA512 3f4b0cd5777339fe8c5851302071977840693106ab7171d0d5bab6f7c1c3969b194b79bef318ede85ee3bf35f2668aa995866d89574d76cdeb5fe119f818721f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2aa1c177587a0a0b2a30b35584f99d9c
SHA1 8fc894e97e5343e3f2400c1ba308b31750f5bfc2
SHA256 ef4e97ad31052f396b51966b0b7c922856f7fb52a0346d07ecf4219672d7061d
SHA512 111cf2022b77cb8587cf5339582b0ee2ba917ce514380e15885bd3ae6a0649a4d214dfc75566d2e9a34835f0124604b961a9ac6bbc43392a587fff4428dc8f66

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db04d57ed01969902245a34d983cf6d4
SHA1 c8940c663740b09f2b1cbbe703707de08f95489c
SHA256 2f56e216d362b7aeaf1f7d5d0bd88c64e729b8c50bdc300a1a72e4d3d24d5a20
SHA512 21759639452520252ec7406b1fb72ba1358931407276a3146e1ae8620484396238e8278a69a242f0091b72da59d9a3389866a9758ad9f5bc0296f7ae596d2af2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 19cd560570ae1b2a05265233fab7b2c2
SHA1 57c56881d3c8d51efa4c3ff552f8e5158728c3af
SHA256 c645da87cb8cb13c3b6889a3e3954a6538c40ee11b9e703c3fef6a7ea878d701
SHA512 a6e9e8bdd6618ca9def0b05a98bbce3b3664e26f79b6ee54d770cc23264931e0e9edd49d8d98c76cdb8a10b614fb9739d49214925599a3d13f68459db5cf7c5c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 11bfe3f6159aa9a6a1dca4b144501ca6
SHA1 f4ca06ab1338eb42feb14bf4fd09108d9abd3b2d
SHA256 7bfa18a22b2db141e7d122c4dce795fc5c4cedee0f0833415a23aac695a93bb5
SHA512 38e007e0abba2c567f9a04f01e7fbb800d7b5568ae9784bd82e3807d11faf7dc2b476c6e4e27056a958f9a7ccca9f0da85a3be511561205740332e9aa57c29bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e0b4dc3438ef6d4404df86661aa5d496
SHA1 e21daab52d6f0cad82b756d82c8110df6c5594d8
SHA256 a0487c7ca65441832208c3c13d75cd12de80dfa64760b37cf0fa6d24f5b4e4f2
SHA512 fc88a21782c043fd3c97eb01f05213c7dd5c85fcdd5fe125d9b24dd0a885d83d3e2e174ea8e516ec18aea88bf7c6854380ae391a66a7255e9c76658651cd3de4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a9376ff0603db4ba12534390d0684f2a
SHA1 9ca922c4bdd93a0f133f549a8c250d5e16051f3f
SHA256 0665274ab89148dd52da23e0d2f2762f840335dea304049747083d73aaa32d8f
SHA512 9dd6b3ba57b7f2645dc4d84009d6282c87a919eb50eee4bb4e7cc3f12986ff3a7886e3e86854a81387f01ca26f1b9dea047f536aa1eec98998002a3967c2ae7e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a673f67ad6e2f96fae57b607e7f001d0
SHA1 a7009f711f28b97645066c6c67142397abd9726d
SHA256 9778410c6ce33de56ddbcee62c710c20c9d32673b754a814dca5a31f87ef7cbf
SHA512 4137e2a963739afe4b4e4186da8abdb43f7f58c1140823c91fb340ab837eb5fb9f4f4d64acb7c0a44d618285441d36f396906966dc323dee42c87c4d4328f651

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 894e112366d599284224a0e94b5c4ea1
SHA1 768f48cb69b762038a6f4114791ffc93637a95aa
SHA256 5f3f2b1998cb11149c942b2a758997bd8f64ec067a4f8ed6e97fbad0f0eb3ef8
SHA512 c19c1bc2a90a4b47835ba309e045b5b85e59b58396600eda04c576bfb6659906b183e9302f3b5a7e395d5de1e84a6caa8af49ef4046cae09c95e2b80b3837223

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d5c4a36f23312e515dcb34099ddf8cd3
SHA1 a585ae72e1951ece7a76c1e91835c15f608e4b7a
SHA256 6c50e7faa517dd019c6fb68ce1473d7bc68d3bc7f5e9109117d7e542ed46c91a
SHA512 e20d82d8228f398a99f32dd9f994c57327d7b3eaa36ed1178a5614ba876740cf614c7fc1756c73b390f2e3eb6e8a00a0c9f9c31954cb373cf7b11abd3ffef28f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 922a58b3d6e7fec34a7c5a614a2ff942
SHA1 e9378f30fcdbbbb7d9c217bad8646932a5c75d50
SHA256 c5dfdc9309c2811237ca68e766ed77cd643ec9b66acbcda8447b0bad85f41791
SHA512 700d947d573f6c54d5f2ffa9341e4a791279128990c50d73812114e376f4584ed34027713f5e47acda708c7446e40af995c8be900266b39e9632b3d741057efe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a218f42f7f6366b6ff95a40b603f5f37
SHA1 cff4c86b56946cdba430b8a643a0811f1600c81b
SHA256 87588773efa0402dcfa6151f919c6f46607d3279e39cf95bf3446296840c19c6
SHA512 16f1163a30835ad432b5ca6e6a439e0726f2623a2f32030034f935174fc5cedfac7914df23c454cf40e457fedd2f1c1bb8889b1e1aa3cff0fc5c311ca1bdd0c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b411379a8c284db73d473d5a777b8ee3
SHA1 66004d610a67c80e9546bc94533796af573acf57
SHA256 58f380e8546959a241c800166417d9ba33233c197f0268014f8e7cad3773249c
SHA512 74451111c77c5219d533d32958575f6bf684f314c6cca67cf641a9804d5429f0f1233324d400c59823bffb8726e2753c4c09754f3de99d9575ac590cdb4cd3c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1a997d073560bff4f7134ea6b91fc323
SHA1 a9db3af97724b09336f597cea7cf33e1123d63c5
SHA256 49aa286a41b403265373bf721ea18c1ee48a3a5913b140ea80ec6edfe065f36c
SHA512 3d45ca55678f4a974fe1cb8aab902dbc8e090a29713e15a723ca562ca333e90617cd2d4331ceadd3d8eae0c6b508e45bd8a320240acc6e18847b580fee830637

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a0a731d71953d07f69409693e4650e22
SHA1 215bf627f2a1d10e12fea9bc56d88f9379c204c8
SHA256 376956f286e09009d58b4cf5a4daf3866bfe9e1a39d4a627f9670e02461132ba
SHA512 b76cd9074e788b5490403f8e894a560ee4c244e069d10b0bd37911ce5077f4e833a6f04ee988e9ebb428f7a048f9497a32cee9d3bc073c7cdf6db9abd5c7fa65

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ae7a16f90afe71b1e04b042f48bc90b0
SHA1 4bfd78823b417f5312d9fa2781fafd38ccf4187d
SHA256 3e30ff404d7d28c8a5177598d10c9be2353566494f52083587d0179ab4b86207
SHA512 34e33b8e724623d6ad597e18b19d79444e28bbd1114e43fd9ec60f85611bbe44ed1a3ab056d6683c284b2ba24e8f6ebb898b8dbba00698d02ce49929bbe4b5a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 23b1cb34d5fc4cb041f52afbc0a22ed4
SHA1 c9f267d0ce305f48b4743f6b091c4b6e8760a8aa
SHA256 88f69065b4e88ad6099dcab7dc395ec440839d015d476c38a80d81f203900f27
SHA512 803945451810164add63e0e315c21e6e05518d5af38327d0f05ea7692fc96602e3016a204c3d188d0cb1fc15227bf32470669f10a1f8cef605ac4206806c2faf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 004f9038a6f185e40e885dec5e11676b
SHA1 9d96ce801c2b37587057182ee83852566dacd4f7
SHA256 4b6da590943cadea097c3544d262c6f4cd80648934bff542aecd9ce82a3ec967
SHA512 1ed3dec063b220fc88160d928e8c6dfdea2582aca0207f53f79b7ead754e16eab58f9062d088812d71a8c17f8ce4f28116c930338c22a30924a727bc0411cb7d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f400d2658186922d44f35bdecf8466c8
SHA1 4641e64e747e18336290d24e5ad4e1396f9cd8fa
SHA256 bc15936debf6df7f893ac5eac29a9a613f2fbfd6064204dfdd24a82309eca225
SHA512 621c5d76950ae2288f2e47735a73f14539a75a07188bc9ee4fac0ad50c8851d5a74aa4dc5dac4659997f902fbe317e7f6a826a55041903325b8c67314c768de1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2718aa067817bb60b06179c6ce1879e1
SHA1 9cd81889a14d1e69618d10c6b7c24743f6a7c134
SHA256 1a419cd76c561a11b78f743a51b5857ee8b798ea368ec18db90b5fef001d063e
SHA512 4dc57e4c5dad04817f5fd2980cf7cd0334754e9e2277e8663b3f8ac1fda62230d1d69a0933035a6830436d33a382a0a20378dffcdab95318021a406f007d8fb6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 da708b53b614e0e68c91a360423f3745
SHA1 98fd4e6d0eda42c68d5df45fc20083a560527bcb
SHA256 f0d0a739af1bbba4fe18aa896c954c5591203b5419f567013500a80c8c03460d
SHA512 9d793c9c4e0bc4fcdc19d9de5f03ea0c7f93ccf673630ec96fac58a1926878eeb1852bae5a30e4aae48308a46f9b13453b09cec57ceb67cdda28ec125ad13fbd

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8E143631-61A5-4347-863A-A07820EEA214}\EDGEMITMP_C3436.tmp\SETUP.EX_

MD5 5070a34dbada1aaa375cc572b5fc7d0c
SHA1 e74b7ef714755870976abe3d2b4a7db0b9cc21e5
SHA256 03e7a32e1f10fced6a07dfa4e6cfd92510d4bf6929d423798e4fb5ca91fe6c20
SHA512 fed3fcbb64a59070b0efd677ca2edc982d28e37cdf7283f2777af8aca7d3760a7eefb8d01b3c2bf4b4ec3708a74c3412f0dede91e31dca1b6f8a4e4edc673aa7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a795d6af33d01c1c672c3c949d5eb16c
SHA1 46e9cb416242b2ebcf3600eb258f7fc977278bad
SHA256 eef8a043a4ac9897eb9b3c3339977db792f1a425bb9dd5dc433de7aaceb15875
SHA512 822e4ead91bea0aedd061f77ea31661297658bf6f5dc2dc77571abebbede11e369770aaf2d88f37e753dc0f5b0c403bc9291d25e0115c357507105b450e1a4fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eaed858380d1ad5b936f6b0e2277cfa3
SHA1 dfa3b827bc472d3ba79bac077b74fcf68fe13d56
SHA256 40760f20b91fb69d43e8f958114bb41df2966d3884d5be3b5ef98e8cc0fbe57f
SHA512 4015c1f2eeb4a8459c18fbaca1caba0e09be7aeb8752973156da218c672cc0075f25b134c099c9be07d7ecbbcadf4218a4f71e64ec3d40cf263b91ec1427214c

memory/408-3477-0x0000015C6B590000-0x0000015C6B59E000-memory.dmp

memory/408-3478-0x0000015C6DAB0000-0x0000015C6DABA000-memory.dmp

memory/408-3479-0x0000015C6DAE0000-0x0000015C6DAE8000-memory.dmp

memory/408-3480-0x0000015C6F000000-0x0000015C6F249000-memory.dmp

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalState\ThirdPartyNotice.html.~tmp

MD5 effecce1b6868c8bd7950ef7b772038b
SHA1 695d5a07f59b4b72c5eca7be77d5b15ae7ae59b0
SHA256 003e619884dbc527e20f0aa8487daf5d7eed91d53ef6366a58c5493aaf1ce046
SHA512 2f129689181ffe6fff751a22d4130bb643c5868fa0e1a852c434fe6f7514e3f1e5e4048179679dec742ec505139439d98e6dcc74793c18008db36c800d728be2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0cc011ec1180679a08cbb4702bc26795
SHA1 83a15a577c5410a20aa1cc3cf459c0494776bb0a
SHA256 947373e02ed2145ddefdff61ca500b444e1b0738f02ed70c0761c80129bb7b39
SHA512 870ce227d8c7582a876b4e3bb978546c44c10766bfb83d769d4aa7a4ce4186974bb64f419c71581a1db244ecf788ee5fc7a40bd0eb568f97a4772f8aafb5e1ef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4e38a34bd13c0019b7359d30db33a966
SHA1 c94e12ceca1a297dd53c7afe55537c461f6727b0
SHA256 b92b161f180f01fec3032076edebca61dd2be30c403b992f5bc3307dff8b9d10
SHA512 146b3d9f8ec3f70bc84ab8eb37f90a0552fb722c19c44d8e0eb8b701100a9c1d48de84b5e6b904516ca9887b16f65b21760da890b8d58a062edc320361d2178a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f9d3a467c9bd9f7627e818ebd13993cd
SHA1 53867252197cb1edf5011f39ace006a34d9e6780
SHA256 1cad1bca5f60216face3f16b6c81c919495b2db74b34c9e536e2a7354b96f3a2
SHA512 32e4cac2d2870ddfb2eaac316874e904679bbefd9af94d35d3a9b4490d600ebe93c977f69a99f12bcb70dbe618df301c80c122e93713dc2490f91fd530027196

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 aba9930f794261224fd29a06e47b9f9c
SHA1 e0170a2738aa8e27a76262eef4da81e7c83efb1d
SHA256 3338cc9f4728b397efeb48ce46d22b62ab4139e83264e23d419a6c0b77c078f9
SHA512 6e37e90505c09ab914e8c2f9091dfbf4495dba2a788e3c2a88e93854c14a446449bd86932274271f41f77e03b83e3b9226edfc99e39e79155ac66fbd24630a49

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4b481a72cefa01a0586b7332732d8c81
SHA1 ad8a7593843c9777fc0be501237caafe0362d1ca
SHA256 b3d2ab3bfb1c717efdeec27de626daa0427b4c6e4895409da9476fe0eab68ca6
SHA512 aacd3c782c3f96bd588be8ecea7b1c23957a60ec939cb38008158e02a341e766f6e1cbfd38daa2e43645f94d875f50f9a9a345940317885ff588f956b4180685

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 02877402ccfa1f094401a79a60770626
SHA1 f8961b6543631235d9ac74bf222a1a05e1f39431
SHA256 7cefd20d6913a62363bebf70281743689a2fbe6e21fd6a1e11dea6fb8ec7d026
SHA512 db7561b0359bb12d3bc25a4127919a71c7a860fdd108c17737d3bd8630aaf2f5bd541266a58cdc208c9893486cc1a276fbd487900833ba3e466cdc311ed0e18b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9f0820c1f745420bea07d1870cbfac91
SHA1 2d721cad4b6383da4d111883e0633b71c961e7b5
SHA256 0501f5e8fb4d970d12905a9f5af6f744023f48b5a115db02d8f6abeea7a9ac78
SHA512 3b8ea0f08c39c0cc844cc93662c546c5d3cc26eea0c786565921aa3d9b9bdb9982c8ffb301522a603bcff76e4e7b61b071e8687559a847d281960c33538a06e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4cbcc51826b9e50339d403f1e039c798
SHA1 ff0684d0c7a2898a5cf1c665076075f2eab0c639
SHA256 a8a838778f4dd7eb1b7eb29b13020f77c6c52e0e76f051cb29e13440a50b65e7
SHA512 351c796e3bb12ec4a3fcf65f8ed8f5c3d75c592380cce107eda369909c3cb87717dc7c6095505307921194b0013f094ba42ed7be758af49175ca9f65cf964591

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a6391bc5380e1dce265fb65baf557cf6
SHA1 359125346588fabc0bb9f6a69aa948b0551ff80f
SHA256 9b139c603ab18ce8822f36de927a57bcca960df17c016b3acb34a7d2c7f1008f
SHA512 ed3e3ddf57abfae0891d7fd2962091756cef78f310e37e1d1c3ab806b5dea06ee66f40d69139dd44f012a192877b882875cf6689db02be075e2d77951b3df67e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 53c96391436d616cb43bbe94d8a4ecb1
SHA1 16323bd7838bf32a25090c4268582b0ee31ca95a
SHA256 5860fa396b79e7bb832964ea3f366c32e2c59183a03bcb1e1f1c3982a70d3d63
SHA512 95e3915c32333b3959bfa013884a6d8d9fa3840a5a3439bd297a450d522e6a5c60f586cf468bc3184a8bfeaac3ece713b4045e613f7be55de457532a01da38e6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 971cc6716cbe091f69d376beca2e6b4b
SHA1 b2ab04226fda911d2d34ba41a65aaadc30f2df5f
SHA256 55b4a52834610cd0ef1e04a3a43cdafb405eac319114cf3640baa65f4e487cdb
SHA512 09ddae8dd2ba02c5e0e7d8d56ad012e3d53c2ae82113cb8e15556218d0e5807548c1be693f22286c3a7b9de2bc84726d4de25a4978d32ea323ed3f49026ab693

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9f9a164d4253c9097dcc8b512fc5f495
SHA1 a5b54e1a95deecbb50a0bd63bf4a2a7e8266a35e
SHA256 adc71675c63e5ae770754bf8152f17559af7e8776299cbeef8d96dc45cdcdc91
SHA512 51507af307a3c31fa6c9c50b3545dd88a6317367b141be3180136521a5dfe32b847fdeb6a080aae1d989767039776837155037c2260360b1fccb7d99f3775adc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 59da11e23a130fa0db49ce9669ef524a
SHA1 f762cedcc6b8675ebeb3b3cf9d51099c4be45f60
SHA256 15a1a7568e435b5f52e26b8a232affaf15175dc02ec97505f72e995f933204ab
SHA512 e9fb2f1810a570a2929dbfdc4748e1d81c6b46982e2e5eeab54a34f2d4e7e0b93b2dc02c2a96cde97fe958da450b5443933d7da3c5288e02eaf92801c421da6a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 397db3fb163bdf69ff92ca2a493d9a54
SHA1 8869f395caa6958354c2598fa4fb93c9f6fe316d
SHA256 9c7db9a073321ddb7183d85b5d25e1cab9593d461ab64642475f84cc93ca8b48
SHA512 4760b2d9e9706b5cde11b7c9733c885c12c3043e81540eda314ca0eb6e81744808afeb53f544b2ed1a07ae99bfe9466c41598edb01d76904c273b42884559983

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0dc45113809a61b95d2f464f17e2f0a0
SHA1 d33abf89be1f124181e39238d91b822d6cc9fc41
SHA256 301dacaaf97171327936f210941fec2d770d0628e55be823c5186f3c738db4cd
SHA512 2cb1e927af12ae10f916f851d6cf0a74489a9ab8cb239e3f7c045e9bb29325d86c4d646c36f7382d22072c23ea6b104e73a85304faba28329648b5da8cc0a574

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5b485a06b3cc763b33de93458b54ba13
SHA1 b95c539fc085044e435d5f4710bf1f8accb4bc61
SHA256 8e98257a0c95d99f66c1275ded87fe102733a0ba66f8dd602ee925eaaa0f73c0
SHA512 8e2573880f811c48369d706bf2b7fd19e1f0eda49e6b14bb1a49c049d9787b6ca797207d172c97b2844efc3f7f6b99202deb961cd6dc52ba8415a20950a14910

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7a372ff80279416f8e6583362db06004
SHA1 41b07f6eea7aa75d9c7cf797cd0de54fc582e5cc
SHA256 c31fb6ee9058d62bc13e730287b68711275bdc298b58ce10b4da29dae5c6a5a5
SHA512 88748b83bdb88881f3d6d41d427001c76a2c4b8fcc5625787e67cf54695a1237f5a7d4cc7c5ba3f57956d373d752fa4718d1513468deecd59f74d42e786a37ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ea320d02c08c9bd0e89dd6f3a1dbcbd4
SHA1 ed972bde71c7477c02242dc292f0f514bdf263f2
SHA256 b0f0b8f6fe094651b9859ce928fcdd2f1736181025c0019be2df0231b426ae37
SHA512 3e9275811722b47b5aa8f69c36008a27738f909a3f47f0954c7107e7a79aba923aeab8ec889891aad5167744b96c2e451ec108fcc8e0357b25c6385dba2789c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ee6212a788ddb27bbda05c2ea56c7434
SHA1 b327845d69fb3df890ef17f0f7466cfeaabaf637
SHA256 1c1bc664f8652ec4681c5af9b9b63fcc5735de9a2505e6fe2904f01e426ede2e
SHA512 81593c22c0e5495ff825ba71b62af111c85fcef7dab2ab9f80c97be83e4eba101065cd73c3ae39fc8d94ce0a29db87d28871a9c31670bd88a94ffb0a6c4703e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e774023883e35d6c92cca1d2ff960064
SHA1 7c99fa05920d75b6ecde163c6a8f9171806cb7f7
SHA256 252e547f4d358d1818c076a3553266ca966624a67936edd70a62512e1e91b35d
SHA512 b0a79b0928a318ef4b488a0ff8702cf5a9d0bf973e610134d1d657bbe3bee4e0b0186f5acaf2da67e46ed66f37ef42566493bae6be3f7597ab7f5f9178c5af24

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2773719708f55a8cf09eab680ef2d018
SHA1 ce52d80e2ed7049f5dc8340d7a056afa137c175c
SHA256 59b3b7209090bf3f4b119e7a1e70b61556781c4bc47e8a5426af1e8d83bbf09f
SHA512 eb77829e3fe85c3a5024498bb6abcad37bb6bcdd4abdeda57bd20280eafb2a4980d02511f001dd8dcb67a01a9ea48088acaaa961bdfd96cc5626430ef6c4933b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a1a443123889ea48f28461de587f45ab
SHA1 19a43c4ef5361a9db8bdcfdb6d6cecc9a53b717f
SHA256 087a168182bed5a9653897a82f4c0c00fa6d31b5f587c67922cbb5bbb14c5d7b
SHA512 fb517b3043645251d3d7690be4a6b513d36f3d1f26a492399df7935554a1774f83a4a751e4e9c24a5bc734cecf1da8f64842d2b47e1f7a961fb294e92ad8e63e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fc4fc306e6ced6af88e91d9d6a9302c2
SHA1 ac74e3a8a1c691ae8c9254de7e893caf8efa4eb4
SHA256 d3c38edbbb5742751f694f39a4667be5fe602f8c1684f4283878d63ff5dc6a72
SHA512 080917dea3a33132c6176a4d057633ef900b86446e79ca59ef1c230543ae35acfae299c5791a771896deaf88ddb08441504b8ef9f183d14cb9859fad6c3fdf94

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ee688a53d0451c05bb17ae4d2c74d5e7
SHA1 dea77718a8b8fd4d32195b67f08e5354a8e88c09
SHA256 8301641002a26d73323fea23fc04506fb3669af11f7efbc2b4cdef41038614b3
SHA512 b22473438f830ceca0c639886640cf99e80547cbb54e1aca493e926e439fa1a9fbfd8acc074ee6379c62cf1d359c1a47010c814c1a72e23b0d6b3fba4632ff16

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2ac5bbdd56863e8bbd4d0c32aaa9c5ea
SHA1 07fba77a9cfbcb6a8cf475b29b04559474afa6ad
SHA256 059065109a5140e11a496904506073d3f06893d3e4ab8f44202266edc0e17ce4
SHA512 4d7ecf0e99708a3ff050055857ca0012d68f9735f769fd44084942e895fdebb08a03135629f6d76a506f47c3f443211109923449d1d0c70211cba7fe51465e0f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 532d4b56317b3ea9ca613be3dc6d747a
SHA1 450a04b4154fedac3b566b8f42606f6a4d16055b
SHA256 3eed87e06a32d85a2b6ca7157da75b64d9c566edf0ba0354f5d44b09ce476c30
SHA512 5d76eb6ff87efdca2bc54ca3a99125a84f2c330c1163ad1c9788ef2d64a279e777ac28020b0a298affe4d035fd3c329b6cece0b788a39047251da8a6c1de7e7f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3ffd13c1e1cd9778266f518f28ca9cb3
SHA1 54981eabc7ac705140d5b3c924a1dd7e79e16fd0
SHA256 0b0d1afd196998af59ef62c9a2cf43579a2ca8f775487560e1f4d909c4b91e73
SHA512 696bfd034841d19b55fba870d7d3857a27d4b0e48190a00bf81e402ef9b75a62d4722fd1795fe93c92d816de78efd3e5aadb0151b203891c57eb9f857803a51c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f0f586b005607ffc2b8688f12ec925c2
SHA1 98d5873c104c84aaf51d938c4373214c216e73d3
SHA256 3ee0f8625797a347a7affbd23ede009c29203d6610cb1ae2baf50ba27b903011
SHA512 af63895a2c8bd3f9e45d87875ddeb30db8a1bc7f1ce18fcd4b99d1882c16448589d7a5c27fea9056c15f1ff7568d804c22047e5c08a0277b6ae87c36db2881e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6c4174d895ecc03b2bb7dcada3f7fb4c
SHA1 35948f9b264d165a2bc7a162cbc50ae9ec0cb41d
SHA256 14a9acdf2fdd04e6de31bbb37258bb554514d6ac1b1be94412932faf7ec1dfde
SHA512 e4d3bb26f240fc4dbc5a1f51742ab60f9d339bc3425e21947ab92928e93be50b2d73a47537d523098c1e13db4880fab087498c9d799e620b8112d3d480e99b1c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 826b4ada70624631081321fbb3aeefba
SHA1 bb04fc817d625b488f2e4078021ec7deeb22de89
SHA256 2290f0e18791426add66669398a37f8eb041f3db1a04ea0ab2e8ac7f5c629b62
SHA512 60af3483729b9f906aff66e5ebeb3f6ff7ce78749af7140c36c7fecc024eb386eb53c1fdfba236c2fdaf3959d20bab503caf583facb2154683feff2af366c8c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dd396bb546c2d940a144a06ecd7512c6
SHA1 a362d784e749026a1ef24fa8bd9d63fff2daa3f0
SHA256 10c67c57546101f015ed90c93a146ba40f55c54b536d4a2d20a51b0bc9ee043f
SHA512 5398628e4c48d7c6bc1fe026b4af39591b7ff00f05b2983fd8eca97f84d60dc5cbd20d706db8ab35ce5eebd2d302718b5d7d3d05f96937b5d89fa3615c374169

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1c2b8939b3a5d94e2f4b5387510e3c1e
SHA1 a8b7fdbdbcab624e23a483f1659bda94e785e52f
SHA256 f2386bcacd878f25ab0fc5b44bf7ddcc2faf10453bf9936ffbe7d5a8fbb4cca9
SHA512 9080804d5bab8342879164fb7bed84b8141e95320425ede8e759d52e590f67fe4ca19e5ab2ab4125d449477735679691a0e7f44c1a87ea58d4668f63d72546dc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ab7bf7bea1963eb52cda0fb095ee65da
SHA1 5e5348217acc40e9e3ab39bd98ec8358d97b1f10
SHA256 3fc0d5bb7843310e887c4586f193d4284ea9d5d9e3069f82f58db0c4fbb5a886
SHA512 12156d2ed138b490c8cff0357bca6a14012c57c66ad4bbb56fa67dba883dba6b6524a53430b1fc07ff6e73d244924ddf9c89f2a7e94caa045ce0de5cc59acef3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 37fd4fb1a7abf5423f8638609482a7e2
SHA1 c94800e286fecf6d858b39e6e0410fd6657ea2ba
SHA256 b305dd40129578918649835fac9cf1fa3bfdf9ae02e7fe4b0fff345bf1d7bae2
SHA512 bbccad41246cff42a7b6753c1ef2cf08604f7d6043ab7b738ab1b064c4b89903b13b97a58b7045421af0cc9aa264f1bfd3e5fa6b7c7ab5b62bff9b4b111c493d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1e469aca9360c7e9d4e79f75810bcb4d
SHA1 6cf1fd4ce96b789190258453525e0121a5485829
SHA256 0f69a385348f167ad71fd4bf948eab7aabfc6989cadb3139252ef5dd52f1b3bf
SHA512 5168079c7ece1c35c67c0af8424d220303802b2018e0adc169aa142e4c96b3c6851bb32aa0424e0d198c357971a4c94e96b8ed3813c541d4263b5b9723e49158

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 62af9937d145d58c096938f8ab8f608f
SHA1 a108917a92240d1943e2cca77d73ba76b5f9c77a
SHA256 d254896452d5c3829161686b17a1bea45900445bba337889362e0e5d2198b191
SHA512 335f6ef840cac91f700bb0f6e3117026097ff1415956354244ef912b0e633490e3fc0739c951169ea726e99309767a8c4fe7fc6bc42e08a542e38a2503ce7730

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9760446d4a4c87a595efc1339618e391
SHA1 1e9737ad2f3dc6f4cb6d0ca1c1895b2ffb48ce2c
SHA256 6c5e21ad3c6c3de8682d978df84b481d5bbf22e236fd71bed2b4d3b5663b6cae
SHA512 0993a1a9ee0cbd1e262491dbc6f29bd95ead5f0bfcabdc5d227d9585c1ee62c106fba42c0ff05108bd64f0a808f03232f3374116dbc2f342ff62f04a0d4d97b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 236c707b3271a6520518f747bb5fcdf4
SHA1 f887375b27b1d5180ea058d676341d81e4c2cf48
SHA256 009a3807daf5b8d19d237b6ab92fe85a02795f78bcf1a65ca40e9929852a1de8
SHA512 9079398149df86cc20a25342f876c93f13b10f1ef56a19db9d42673c03fa12fb0db272feca3d8fcd6b603bb1fc6f60b0186969c679ec27c625dec733d7e72f9e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 93648c83c2bc8b63afe3eb2c21ea22b8
SHA1 5b50948331c558b756b5f8c5c83130148c33c838
SHA256 21579e07158fe9e5e542255d686662fb564ab9c6f689a812746b1f9b8ba26848
SHA512 a9872984fd3c83113780d68757d726ec7af93df14912ffe5553f82cd949af493cf04cc7da2ae92fed8dcbbe6b71c76961b11f4c79ff431cb562254c40bacb4b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c673e022a109a96201aba83f0dbe5770
SHA1 92ae2fc6e39ff0d62150bbb91901c44713493e39
SHA256 a059571470935423b9b9f3ce64c384c619f00fa72cc9fcdbf0e2d459da2e25f9
SHA512 1a469cd63fea1f26f3cffeeac52c9535bfbf80c6fe71dca9cccad4709485ec0237a2c3258d7ffa5f0a4f01a7210c13ae733ca66e230f9363f2c3af885406c537

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8f62b7b2fdc0949fd617164fbc59198f
SHA1 f60eb78d333328f530bb99ab3379a2a57bd0acba
SHA256 c96a0a8a96f119867e409822b90d7ba7ae7153aab43a8323fceb9a70ddca44bd
SHA512 d960bbc21d1a51d3f6be59f9300c9261acdb74c12eeec9c0700896657676265cf77dde4acab33b87083f18de1707ab9fa73a86719444678dde630574bc1c0387

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3916a18a453fa5b9a9410dffe4d2ae07
SHA1 901623b999fb0abf75d905e4e4340c66ebb784ff
SHA256 732227fefc2d7bb5a2b7227396c27adeb7e482857884501769cf430cf0b8ee3d
SHA512 3934d436876c5161d95c94a5770750929bec57a244ff534ca4fcde2ba5e9b7856868ff6566bfd45f1934219da755106dc60009e58e26c1b2fe3990599823ebdd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 914ac7a1fdc821fa38eb9b60895ab134
SHA1 c7f1b364b621d4edeccb1c8bc17f2b73a4d479ab
SHA256 7040db690b57789277f64767ea6ff79145f862cf9c1da0ad4be7d8b4636ec268
SHA512 70555b6127ad3d01e786ab5feac721b51780d7af03111b028f073db1fca4197a98d7280037640d9b7dfe413e71c2986c32239b47ac0a7554580c23d4e2d232e3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d2e64131ea0dde9d88a34525fa9c9175
SHA1 0bef1a8333a6882f918d66a0052a4b74bf67ee35
SHA256 1a4700c2028c8291546f72400707f5d26d8a3953bcd4b955cf3e093f841fd69d
SHA512 b602b1e56f785ee35cb563e7afafc9d6a66843b2e877b46f9ea86e1d8b64b9b4cc15a5cee28e11c3842ce44b6eec0a2c508cee3862cc2a6e8b5a08b11ccff7f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c14b70991b0c587e3a32c855b754b012
SHA1 3dfd01cfa73070363e0a06f18a66f213286c1710
SHA256 4a3403a4866182346e9e4bafcc86b444aad63a163523eb1e40d2ed43cbbbbbb9
SHA512 65340d4ff32560ba4d537f6f8a3ba95e1286cf660ec8d3f6f6c2b3599e06ba236e427f90291176f5508042ff90ee04b62ee63583bd54f3e4786fbd79395569cd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0a0f8864961ce53016e678280ecaae58
SHA1 d353e1e844845974e5465206b8df4da1118786f3
SHA256 5c8610a90d8ffe1f4e5519d3816f0d051d1b9b616eab507e1f5555c092281d1c
SHA512 35be68c376e0673d03081ceac14a37c34d984fcc231558071b6589ced2bbc504648386008a6006b8ec3afaa04b79d4a1bdc0d45eb2aa760ec26afb603c31e413

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4789a5b18b8b33db8a5785fefe3dc047
SHA1 28e24d590d3472662cee0646da949dbd7de28816
SHA256 6bd7eff5e13670fa3b2b3910694b50f6023ed66c98ad7458a9a1f2de5b17a3c8
SHA512 b89c6d747a2e2cf60cfdaff97ca1c0a9aacb984afe441d61a7e8ebcb766713c344c896bf6059bdb66b36e641d9d2a968811ae6c3457f295d6dacbbffb931b1c2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bfb54070c442f3ffde002e6a6e061abb
SHA1 8cab7afe062a61265661160f2db484290c8a5752
SHA256 fe094b2424bfd2b8acbf5610a03ca54cdf031334204d0ced90255560a110ed76
SHA512 765b639960beb81c43984a4325aef41269d41e9da36228e42f7b24e98ba1c2e5530589b70f8e77c4ed60cd4c2df9100efab2c0b44928f353848ad56ac61f0152

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c7aeaa17e1af472a1a6c84b34775fca3
SHA1 8b4de19e130a70681f0ab23f606850c6f2bc5a06
SHA256 a55e9ef9886c13ec2a9e2d5c02298664650adbc8182b8b3f9e24fa845e10be2f
SHA512 04873dd08d2cc529cbf463b88e59b3c4e014664f0434635e10d81041fa3c0067e07d16a5c88f5e708402656cd38531004aa2a5b05fa40b72e7fac0fe0ec48e1f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 181fcf2a44965d560e3a9945236aeeee
SHA1 7973f84fef3e49e1298e2053e1bef050fd97bf69
SHA256 3e1ef3ca2044222983e46edf9d05be92a9c8e9690d02044d50d49376e42f3850
SHA512 aed16a8a4285042708d776883fc310a2edcf8d45bf53dd24a8e60ec3c112decfd27a9172108a5b4fa922484535057f7f7e41c8089a2471ad6c1b2b2624cf64fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fe977faf505d0e88f5e5f6ab0a4ebf1b
SHA1 1af4561d9d7891edd20449a7fd4cbce27b75f47c
SHA256 8f805fa93d0f3e4065abb8c251bf3e72463c081ce90584ac0e265a9bec39e5ff
SHA512 f03aaa30c59da180290232b2dd98e483fac2d1a9f9ae90581f8c829e82c5c17bf151919481024e8aa384c022d65968a7194a224e666be9cf081c14bc23bd9294

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ce480fd8ef7c25213eb21ba9115a0749
SHA1 31c216ab6b52a921e6f952811be751e5512ee246
SHA256 b2c89d63aee7276c823e3be6b7ae54600e75b72be16ce7460b1cccff8926e163
SHA512 a147a01bc294c735a39e5af658330f86eef9dbb127108ad31ebfe2908ac91f27b9ad7313ce29d9b86ba63040b07ee64be2467ccccff27ede7f6d74a84c562ed0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 74eb503060e12c1f4e1eb5e5f680af39
SHA1 17533f1669d8e7b4755750d0334e88fbb2ee9c84
SHA256 9e27b911a35da2534cc008fafbce697929f7c291e0b82ef057a02073b7d2f18d
SHA512 65bead936461c3712e9961ee6ee1205275fef870367e660c09f114e44a350c7c78106352607a9dfe6c13276dcdeb441a135ba17f1cdad458d1fe0536b96f075b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cd15125bd0ba10c91e15fba9381109b2
SHA1 508f71d07da8b1619f5a850bd4ffce7a16a180ba
SHA256 e155bf6b3ca3b7cfac105d418bb9bf9f2dc28974b71324e926a1b486e11f4944
SHA512 6bba4de8fbde6825cb55bcbd7dfc4673bce47375aa63ea009ef131b4c3f40e15b4ebdb412e46d68769460456af99226052f99aa08a46fac119cae0bef68b5aa7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 17de3d84cabce20809dddb5ebd3ae340
SHA1 20f387634f998aeba66e3ceccf936e3cb8006054
SHA256 3df8b6cfcd2832feb5c544f436ecab28062ccae3348d78906cc2596cb7a6d1fa
SHA512 52f9e447f3aaa1ddb1e265fd4a30ac1988b4ca4bee1ccb64c763be648d8c0b90e9f602022290c77590f72345ea470e1fac858ab261324408c776876cfe50e259

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 193fde45780f07ff9a16e041dfbf8265
SHA1 c97b04e96c756614440a37d9a986ca60f0b83644
SHA256 ff56106eb76c258c74f06aea2c7eed3785f8c2bd84518e10eae75c2928ec6230
SHA512 617c86af1aec8aafcd3e23fe4b27f17f52e87de022c3e5e95459dd09a92d3cfcc238dca5f2b74d9aac2e8ee3aad4cb0d2da8431cd0e17ca2fcb490befe2c3ac1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 95a560bc07ff2bdba406bb374d818b94
SHA1 b7db1b0cc6fcf3d3ed115919739a538dc9bacf04
SHA256 e5d17bfbaa98a482fb8a398466efc261ec181451979910591dd5df63f4cab7f1
SHA512 66e14f4c734be989cf4cc2c966d0aa760df858c87fbb02dee8830603a3431051affb1ba59c502098bf956d9285a02ef4b2de3d9b6ec686354336fee2efa9315f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 29bc1db8811e97115179f7f95616b245
SHA1 84e09f0a09be7ccca0b3349fd50ef35a6cad65ac
SHA256 812e550d788270fd9dfefb0175818b0b83aefdbc0a04720a483fe5bb76c5c472
SHA512 1426671f5a202490844929d409b6543c11b83f84ce97f037e153de5f17a99a28ef99466a2a0d6ba2e49f1ec74040787b15247ce054b38faa148353c30a298464

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0b7bc5cfad8ca11833c59b33d0682a0f
SHA1 5d5144240c1af4a34f00c7d2e84825e2e57a869f
SHA256 22b506de7e189301c0e5a132d590502e6ba590c769104eb2bb7d3d51bb3bde80
SHA512 4f1a9ea9bb5d5e1dd4fd14af0af008aee1cd1f442f892d29603431aa6859f315579dac84c82499ed492589888ec0069b160a6b7a232c2bd8bfb1739a559463cf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5295285ef461866ccc44c247239e74ae
SHA1 073c80ac1d9cb344ec869db3f83bff14aca8923d
SHA256 728c484215f93379a5041610fd20f0a7821079514daa1f306e333caac9ba9996
SHA512 33232c43f8323d674756cf172050eee54e622a3cbc7d16afe8eed7f5863e1d8aa496ab17318fd488d3c3e497305f26235558a4992d7e296b481c0958e31ece40

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3a009d128b8ed608d4a1ad99241e086a
SHA1 489e743467be61d98d19887650b238f1651686b4
SHA256 143547f0b611256e25bdcf716ac28db7407b674128816b35bcacd58d9c9c88f8
SHA512 5b4788e3d2c9fe647c6d9796aa295a3c1293f5c3cd3bed4d9988ddfbc9ea9e82f8d9587a4424e6abbbaa3cd12a0483fb1cae2f576a563387d7197ce94d763791

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8aadb5c9ccba9314fa0cb9c392fba8ac
SHA1 fa44557547e800f6c6f220ba81d0d33b2bb6692a
SHA256 f242aa557f2341b365aeaf5553f4a9b2e19705339357666d2f8dee7e48b252f2
SHA512 12de6d2d2b04631bcc582ca0164def823d2350f64ef43db4291163d9ee5904ff0d92a39e871d3be9260360736fd9b149966efd3597bfa6fdd1b06688c7f3cb00

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d6033cae2ed9bd71413e3d3e48148120
SHA1 6e95b667de718725ce78f664f34196f6e03c8ffe
SHA256 324865c3819df03013030192c2181088f55a19cf1cabda1b9e8417c951a32630
SHA512 66ed3e37ca59000356e7210db1cce598a40ed47def1f253610adb12d5e79f4922a4fec345c321dcd448a16dbec06a4e5ffa1fd42f8c463fc9a5b191a18ee5719

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c5619407cc8417549de92033ce5b729a
SHA1 dd457a998d8d7a2ce79c41016c68dcd1ed55118f
SHA256 d2316731e53577e5108ba32a78e370280107309554695f8460be473dd836f1a1
SHA512 e2959849de71caa688742814b1fb860c30e91c212dfedfff2c4dff5d9f2ecdab2b8453cacae34b2f93c6c8c06a4f0e399c792c3f89c3ae019e698ad4d3bab456

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 757269771510fdbde3a6e1168c7a5d23
SHA1 eb9834db48dadb8f94a2405735f8e2acc7c9df80
SHA256 23515345d715cec442e428f6679f5107abafd15f069342b9f69fa6f0338672e0
SHA512 5e7eb81418936ad12d518b34e959f105d8aa397de162ca3143817bb24098d921b4017eb44af1ee87871ecfd1bc082f502fc6566d09dee07aa9e7626b94b1fce9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6a04459135fc8cb22ac6359887d0da32
SHA1 fe8345350406b24d4e30c6b738f576e8350741b1
SHA256 1facb465e7384b044e9c3beeaed58976cee19a824333e4f737312922d028f349
SHA512 048589661152b4d6d2b80857c82e87ca5cdc6a02f0a481c9b97324cc537b9e3f59b9b7f127bace26d325fe3c1f443fed31e830b9cc0041578bd1d0412b6f88ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d9cc256d77f99eab0f28ed78c5da475a
SHA1 960fb8f5922bdf86a2b89c6e0e98f7338aa2686a
SHA256 304aa8432aa0b32524b5631afcf4f4660d92471cce2bacaf2b93c9b2f6b45a5e
SHA512 ce31d8cb576075d5d368164332206ac4f99c2e12d6ca25a5e5abfad43a86c307df2891868af9a930112f19e9bdc64898cbc0f8deea463fbcd093efb9ed944d9e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8f6c4521f6f1d0643e61f48d5480f758
SHA1 8ab7a543b2530d660517bbca23b71d22de7e13be
SHA256 1d089c156cf692dae9d2d1138c17b68f455ccbae4a2243c3c2dace267c89c5d1
SHA512 e8d1a1bdbffd118074148abed2d4409bab8225ddb5fdb5f631f970c7c1d1793d33dcefc7a38687a291e79233b6eb97b5068b5273240aee021fc8e7f53495f65a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f1aa53fb4e16fc2633fe71aa17b3a93a
SHA1 55e9708f4113ad06a6cff60a97020551a6db97f1
SHA256 7d79e5375eb26d7582911fff4805b81ed6769d469508394a956437112378db03
SHA512 b51300ad2f4c7516a1d289a73cc32aed30fd12fee4a9143aefcb58586ed03fbbd0e520f51abe9a146c798dbdd010feebaaa8be52f38c1f8e0b448f8876602078

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4e128b97ab01fae05bda45006c86bf8e
SHA1 8a513ca2bea58b86a5e50dff4ec0ec141f5fd53b
SHA256 2aebe15a3f4bc40ad5d7079dfb586453782aa07a472add2cd9b294bf42b8f10b
SHA512 aa534cdf83144f86f413026f93e848b9f42ee6f1f9b4c8da163ed94a63218ad6338415b4137e6ea1a85eeaaac2e61ac0f4d48f08c242840ac8989922152df122

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8893648ef5db100ebd30c1d0dd0e911f
SHA1 ddd0bae1e58a4e41c9530828b3a9aef1a562f980
SHA256 2850f77dd985724b9d867c8ec3c28aba7db8a2aef7a6bc11ce92e5007372c241
SHA512 1c6c1136d9221abaccd973ca02e48f9e1aa83010dd257c6cc2030fe5bf9941d12333686e07c0bf76909f13065fbc8bc887b6f17bd7c37aa8b3519189b7b9dd17

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b4b9dcc4a9fd284f9e1b5dbd641c7e32
SHA1 9e1a0ed1538537561db796030f8543ae4289451e
SHA256 de09b8ebcbe19d6a1797a3e4bc474a89c23492aa23a590462a52e72dda7e627f
SHA512 584c908c4c5275b37cf4a1638f88535e0ada56853772d5647413c9619bf42ec9fd9a2c85c3b760330fa25dda86101f023f983ac57a520b83a8531fec7f3e8dc5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1e1ea9123b469361514287858b13473c
SHA1 e2f3a0121e2294fa0716047748e6713da7839f3e
SHA256 0e3427a2ce73418df09e05133b9a8b1c19d12e0d9c72e75036f37fa427e9b609
SHA512 8d95bbf38257fb14bc5e70ce21b858d4302d80bffc1db7200590c1a080325f61fc953e5bad9f5892512eb989d35abd336b267d875e0a1d2b017952c03f8de81c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eea219b5edb7ac5e43e5bd638e466a04
SHA1 5722db04b1ccc98594c6bca12fe498fdf471cc0f
SHA256 275c4c72729aad7f470706ad71a378515306a9f980dc0f59484fa01f6a4c562d
SHA512 980c1cacb221b43fd977f0f1f8db1851ca0a1f073e6d26b40e49908790a80de1f62d7f3eb84ee5fbc7674574f4e4df0e4991adefd85ca76dd13a4dbb09c23083

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3a9f0a4bbaf39cb8c51f131c869bf412
SHA1 40060122e75521451753facb63a4df05b3256875
SHA256 9084cf7182de3f0aebfdd0acf74e83da46406993e1cee416ed1b0d5d4a73d1d0
SHA512 11a5d6667e7b8706924a3323b4c6a1a8d124a5dc5ba69808a62b3b9e443c426984f9252987482f262f640fc6482ad2a3c9e5ea3d7cded506e8a8ff39abc3e71e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 484892c1c9bbfaa3290be885cdd8f241
SHA1 873116033504b9598ae383d2f7000216a90fcc0a
SHA256 72ec804816125fb2486bed86c9bb836414c09cb0ee445950919e0e7e8b7dcf46
SHA512 92867db55059987c8425e4d4ce81a8326cdd3ebd1408ceca4eef7919a58195f7649aa31f31df4965a2046522719d707b3d0e5170781aedf85fffe97bd674063b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 146c4e103b5b1ba4e015763eb1545f9f
SHA1 6027a830ee8622acfb8ee00f28253e1e97c98137
SHA256 b21783053d918803928910a79e92dfcd8d1f0e8b1374cfabb03733e79bdc859f
SHA512 2326da79cdd94b47a9258b48b51305f26d24bbfe97d3060fb8c742bfa13350df92a3b86ef621e74f0c8030cafc3407c8b9039ccfa7388fbf0880f5870634a917

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f75b8a5d5105643087e451f5e50c15d9
SHA1 2ca13192e6ce67a2c81245fb8777f650aae74f75
SHA256 a83d20e3423384e5304036e1563dc4b51966595c2f98af235d0ba8abd3dd20f9
SHA512 099528f305dd5f8837a5dacafcf5b72d7f50cc11d1208391439f6f088074e3b2469133e4aac93f72c278bee0e0081e190908ee1a9165fd9d2df0751c9108ebb9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9129742ab8e3ddde47e957cd51065440
SHA1 50a57b808a8b309f786a87880700981edc753444
SHA256 1f4c9d92118a5abb0a86aad407ee4f3319341aafc578b5803768c56e26793381
SHA512 19c49cfd507866f07e9bb096a5a3811b6be060a3a7e087a80a6caa29e89f72310b3e8a596a368ff9d968cc0cf9c9ca15c242b0db72af469ac46860434ca59883

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ab8f881700a697971d59dd718b7fd612
SHA1 3337c3d6c6fc0be2f180ac3a36c73aec04b020eb
SHA256 f536769a9b627343b3b69cc3b913b544807e298f10f14d26197cf86217bb36dd
SHA512 aa3d5b53147e1aa94685a097726bc246c598c3281ef7f4894b94e022dd22d1cb4d29736b011ff66d79ae9cbd3ebddf82c3c90ed4b8105af59ca0bfef9d89bc7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f34e1f620b14e747a376b7322f7f32ab
SHA1 9d16f2bc6a9f882c85e69d3658d2e1555c46cfe0
SHA256 ae95943d23bb5b8502b203419487ba871cc17d21ca05fd9393774dbac89bcda7
SHA512 23dcb6b7abf241c9e94125ce9fc1a29c881fd14489f76a0639e7ad6d23465b5214dc762e5d03810f5b2a0297396019f994408bdf3c32c5fd135209b5516aaded

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cfafc032f4c5b68917ac611c6836c9e9
SHA1 5ce086da6ba25a7ed24159ae31133458625baba2
SHA256 1675545ea8654d2a385183dce6144e9a4638a57da4157531726bfb5b913b2340
SHA512 f427cd597449aa8d047459a6502c6549275e9f1d70321a277d9e769de67385686c807e7ae593785d73a342f590b506607707101d9de00e423d29416c273662d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1ec6d46678551b2fd31641b5d62c17a6
SHA1 8bfa844bd8156a3f85329d9869d23c74a87af9de
SHA256 1739a2f7dfd627396f40ef0f6f22ea20f16bce307dc697e1f5ea1699b52081e7
SHA512 b78d6af6ef61e3514147349602cba0a5a8edf860e43cf875326e285254fdce1c5e33966d843981e20e92731f0063134e85abba49ff3cd33d1e0bcaa69d13338b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e834ac4598901990fde1d88bffc10e3d
SHA1 90f1b47cc9fc0183224e125ba231ad632d1866ca
SHA256 12555cb10c82147f9ce02900baa1c74ff505bb3b110ad1ac867a3c9ca4c06e44
SHA512 303aa59b457f9c725bc59d377a129fdcfda7a6bdfff22a8825dfa87b8b02810eae9878978587f3ee005f296ffaba42481ec02970166a54b96d3dfe19ee84eae1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 99edd2d58037684f56ca7d776944b3bc
SHA1 7dac8b1e8006e16c85c901fec1971c5dbf01781c
SHA256 62b5db31175c108c1f1d1876311f6a45d1fa453fc5f793ea2fcb5e856374020f
SHA512 2e8ee0058c92d958e0002d0fdde533aabdbf5f718205009e4e474c11d9f93eb70de4fd0413cf62fab905acc66075b8cb3bbe907a65c2fc6a423c34d036a9cca7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c6c67562b0becc420497fccb9cc977e0
SHA1 a707d6f876ebad003bdcc24f8b7f63d90c30dbb6
SHA256 e9066215dc613aeb4f0ef44ee5981bcc5dc701ba5f807a7d625ad4bed50fb29c
SHA512 38d5b030a0c95e9850cee900eb606bcac60d51bac34044bc91292d631fbc43fa89af9268e38b53357a380ca68fee294f7aa23fa778c81e38ee3bbcc75eb828f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 58c6575e212b71056d0b65081cf14705
SHA1 390611139f9aa718b9ff88628d87ee8418e7d462
SHA256 04641674f4254554c38732d94fb79d4c6a0ea0cbfec93c8d02a5e3ed649f3d1c
SHA512 e586136219e3cec6a45aa32a19face26fc25a6d7b09fbfcaf2d36f717e10c5d2edbd2867ca140be9efb794078869edb085fbf20cbb40f512c8dfe6a2674b47c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1644c7e8def71168d646f3b53358dc16
SHA1 0a99903a002f4435e592ba05fc3b2ed7055b0b23
SHA256 2102652fb526a4fa18216a07a042162f41063bcfbf9964266370fb5bc1b2b5ac
SHA512 c28282ecaa7980613727476322f8ec13fb08ca061faa9975ee402b115064dfa65743673ee82343077aea7c4ea1bd022990fe1bc9a516e96035f7f4a55ac1027c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 863d6467ad565e6c8bb0b24c2356b6bf
SHA1 b454bce7847b49678a18f277f6f5f071788b6657
SHA256 251723a741156dcb4bafcbe4e1e1ceb08d3c6e8146e87ed48fc2ff54c6079fab
SHA512 c45979599f2ef1e160a21e56f17eb14d00c7971a0d47cdfb79de0263fa5e51d86e3b8c968e12962eada3e41fd5265990bc332997e712a2af67f8d0b0b3fe3b9f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4dce7f285ac8bb3a623879a3927b2d87
SHA1 c15ce78e4e61c1e06f716d8809578c73d64d06c2
SHA256 22e80d07b41fa0ff49042332b9104879bafca4115a4cb844aeb47233866b8b3d
SHA512 fbc191faedc138da1e352ad5920a327e0ca4723fe2d0b336dbc43ee241152cfc1f0263f18e981fcde64d503a51467282d23b954096829f147858949ce91cf1e3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cd2ae1a553d5617b1170dc47ad08366d
SHA1 4a72486d7874025e17db2fb90162a6d728fe1227
SHA256 fcdcf6806a117e90197cb1f81119420ec072933ec8eddd461afe1cd06318953d
SHA512 0c95ce03344a0dbd8c4c24c43fe56da5f676e4fdd186245757089405d6a6fe9724dd916e64e6527b25932d219eccce1db19e21e2f1e13752e0f105454822d071

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 af97e0001dcc9334867d50b1a535c7ac
SHA1 08ca7268f819decb15a354e5a9a8875c97323c26
SHA256 1dac740b4648ab84b541472991e3a1e8f877c2024c2eac592e5a4426edd30ba5
SHA512 042fbfefa0ee0506b5c9e5a2397dbf441d45d8b1de49e5b34df59f308c11e06435d016fb1eb9e8de24537b7150b80f43d23eecd0c0e31704810fadb36100a78c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 503253c49c7f4aacec67ed444dfb27e0
SHA1 5b106fa933b6c03c444538f494e9f49320885ab8
SHA256 c67ac97e0f146c3e955b46b79c1c278ad4fa98a0e0e3b4d7cfaae75b4db3a67b
SHA512 a818fb2c72768eba01d85f1366c37894b3f370f1f2e9da83d71d78f0cfb32530c192994087a4a9c7f0359155e8dd5de2bd0d36a96f844f6495591904097d1009

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dd95d1b27b2effab0175fdb23e3b0951
SHA1 0bbdd59749f550e922c83152c13c6df843b1fdaf
SHA256 b86d5c47687f4502ab4c163b4d76d7b38a2ac69a24077f78c624d1e053679bd7
SHA512 e98b305d62643841e6781e8254b7f977413f6b415ddc77b574a759f7595fdbf287dc2d84850906d86eeca4c08d020942f87327aea7b6d770a807fae4920f8141

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2ecd1c3f89d487e1c39169e1ad2b8ef5
SHA1 f640b640e95bbc6ce712fad490c7072a27a43cbc
SHA256 b571c15532de1b1911e60cd27523070451529eb888391a45ad4ab21961a23095
SHA512 486dbe72d285bd6b98dd6634ae691b855d53a6b961a44aaf146db024bf876aa43e1af0e606e10dd49f49c23a20ef69adaade26c2cd9044d9a1d372cac5d7a2c1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 293107cf2efd46aa3eea64c0058e7955
SHA1 fb85610797e7e54bb4efd2fea895361089e9c9f0
SHA256 17e78795df713a1b21fa26bb974523b62a4d953069ce286cdfd03096e22b4085
SHA512 5a7544b14a05740cdb0ab7a3ee1ffecac10462de5f47e0f79f11fbd72e348cf05022515ba6e26e65cf5e64914b8e5d55573eb2c8fea0ae186c15b730c1760e18

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8e902c2b4fdef7615a0d5bcc08f2abae
SHA1 3b5f63b7a2741e072f066a89c2bab134cdb0ef97
SHA256 44cabb93905a950417a1e7549afe28c6a2ee73523af37d543339eb4bb53dcb22
SHA512 dff49b85bc35a5a28a219a5e503ae38a4d8d5e3c340fe0ef88d82bda7d22ec4ca2803c332e63837f208a8ec3df2c22533b0d44f0a13f9b002f1d8be0f379f08a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3a5631915afc938d7fdede103b72e1b4
SHA1 f89c0aa95ffd6f0f0bf642420972155c0b174f89
SHA256 cc5a86f66ab03f8a420241626236941f7e5ce921bc75ae385eed4b1b9a9a0c5c
SHA512 d653899099284cf4922239bc28923ab052c01942207ae316219e0077a518718c3809022e01dd78bd6290b60f257a41f5a21bb397d22a8f3cbafc56b9c6e85a1f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8f3c68fdbdc2d5936d145687d29596b2
SHA1 c81ed59b99370b33cf5da23ab287398e7f786229
SHA256 e1c1a9c8c8568dd7b2a1b941c43610ca31f12be852cbf09282598ff8563b6b59
SHA512 991fee4caac927f2f49c7e129d632a4baf566a13e64b7854d7a94453663fdb00c38317b3b2ab12de7168472570e6c46982049aea37418b56683d81d57d2a6bfd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 879d1b838148783a7aaae2b1daf4d715
SHA1 9d41e3429fba5b99ad118de5c00276f01e24af81
SHA256 32943af86ad70b24399d00c96b310b7c67cd89b42968c0eab88e46890d094db0
SHA512 e5f2b12eee5be092a2d56306d1fd53d2db3b8bcad94707c34cdc6385ece245e6e567ae024e9d9e6dbc6228159d005ea0e04e07808dd98c866a8dbf54155c64ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b5fa59e16ff7d34803c33fe345875222
SHA1 e52f1bee03c91f0a882457036172a5c3db761175
SHA256 9dde515e7cfe22fea0b20c4c240b6d94175e8af9fd8e5420ede38dfd7c8d9d5b
SHA512 c027fd2310f889223691ce4b19ad72240252dee702659cb1b1116c6ed236f4075558a6c75a44d17a8c683016e86742d86c618150a84c4f45fe8dfd0f7d0855d6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b14607be1e22b598593d45c6943fc36d
SHA1 93f44e416174f76f25bcb2b95b880c7646307444
SHA256 dd2ec64c6f66490ce372f88912420115e61bcea0ab6ad409ac742b6876bed920
SHA512 a5edf4dbc9d6b0fbd511b2dea5c3aa9e88a14fd2ef48f69edb549acd3e107a160c6501ae6fbeb481ac005bc15233750c2c615ee7c28a580d19770f19b7b06282

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0b63a1766472c19aff247a03a11efafc
SHA1 7550d3095af89a4be6924d3c8f8d4e3b0bb4f2a5
SHA256 628d04164c1fe357afe9559b87f7fbe0a5d53e26eb3eea776ec7ac0b798a15bf
SHA512 a2414a3c8f0e6d5d2a5847b5cbf5e50e14fde98c09030a88ca49b3205e472a081141a0a5cf4746e4b2e06d7323141449758f64d6c0156b3a4652dbf8c2083c5f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 abdb0dad33552aaa0e97b569784f0825
SHA1 b47fcce9b5de184e6b352b0b05c5f4296ec4b680
SHA256 8aff702d1424629a62cd6dc4345812a22e1efb8a89cf8de7aa5bd07e53d1022c
SHA512 10d32fc35269570da630bad8dc6b43aedee173f0bfcf8944b034efb649e300aec54c937ca13f61cbe0fad9513ff4052605038501387c1f7ebd745b04f30d2c67

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e7960e611c7d7da55d6bdb7877e00a98
SHA1 b93f13d0b0efab6b6e36cb0e6b9fe84c7b414e48
SHA256 bf3602203c1b1786caa2679ac174009fe9e493b572b5d3629897cd0f5aa00cc1
SHA512 eba86b30728dbc98d102da2e5c2a3c8245929ac9f4082ac53918d1b5ac9d55681951df2fcb96595268ad0e1f0fa9ae36b82eb630f8859afd9fdabf9af4f2eaa0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b151efed71a8fc2a78e84db86c0da1ea
SHA1 d9792152d49a3f55d6f9d9b0321ed9371592b5dc
SHA256 6421abb6d314c6cb1f6a6a017947bb960499c294de4dd31bfcbbf5fa4a93e1a6
SHA512 86b52d5dd86c5b7315142cd6b2e9fd4119d78eebc78c66a9077e76127ee3b82a2d2dced8b1107d4426e4a58a73ce8385a1cb772467489cc375a06fb16d9cb6d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 09c49ecc6f71abeb76c24e6eaa81a10c
SHA1 d35bc9349b5c181fe3850284d36d41310a35b73a
SHA256 7af3a162c61e4ccf4c3f6f85856afa0d940d7da4befbe82eb07ccfaf524933dc
SHA512 2f95165c089a6eb86dddbd54d251272dbb12631323aa79c5e6e5e9bd95d75054caa18980c103016fb7d9757b9137cfdbbb0e292623c5056c8f340ef911258ce8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 27425c3c4e445666d9d2e7c09335c509
SHA1 2a96e8bc1583a8a8f5f6c4e26ee2a06940c657c6
SHA256 300d6fd6cd9eb527f0fbbaeb439b9a4943040b3fee69eb1a3b39896c8cfe7464
SHA512 73cda212f434c956b4c7a53630040f3beabd97b8c9a4fc152acc3d475aeaa653e09b047933a73a6667b092c354ae9f83cc88a9c705dc35e2b46d90f55a3c48a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 be9f7f9fd07c3c1db393871c3855b9a2
SHA1 bb4e193f9cfd3d15110f0fa12d7bd3bb104469bf
SHA256 39185103cef106f212b7f1f4d0d4978dc3f9e56a9ad48a380bfe0f8339872b25
SHA512 7af218c7e166701678f056ec8d22a3a0a0f274ba75fcca1ede6306f5e757a53f63945967553f9ef0c183c9a09485db6d6764f34c0c1cdadcc032f719576b16ee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 64e11d1af0021c01084ff66cf6c4246e
SHA1 edd6aa21e3009238c26409148a05069983bca292
SHA256 2cd42e52b5ba743edd7738a4f8a46c54ae67b2c25a0b3461d8b0652d7a32bc9f
SHA512 02fffb460f6132b642d8dc7510bc64b2f8899a08b8b33db654485caa501e3556bdf1e1cb40af9db15c4c3eb6cc1278342529d08d6475c2eddba0bf777398fca9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4c77cea707da5e64e49416068eb3c4c9
SHA1 ff09b7d5f8481f2a9e0be5d75a7b3118787ce5ca
SHA256 486517c143605ee8f0043e37781d9821ae74caf4ff65d7fb9cc1d2642b5ac122
SHA512 6898d53414b8dcc7e8c96559eb81eff76b962274739fc2b0cf8ae9184adc8f0be5f164865c526e74d2f8382ac163d9196b1b31d3569429125505df67ce466e29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9a27839de252d4c4601b9105708e7563
SHA1 066ebaf18dbddc33084720dabfa65a130c446013
SHA256 c2b43b35b18ee1be01152dd653db97b87e3fb8906a9f79758d1bc294637620b7
SHA512 3b0a622a91edb3c977be276eb5da5c7cc0e56c27da1392dcd756eb9b64a3b4f646df315732da753290eea123b3966d81fe6bbf14a67037923a5e30fa111495da

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 add6f6b8140e7d647cfe17d64209be2a
SHA1 9669a9a8db923fdeee95574ed03c020dc675837a
SHA256 668ea661f77701c52f0b4f2daaa42c9ad549c30e2605e24c09ddca38a7cb5537
SHA512 bfb3b912e3cca7dd4e3c2e719e4190e922c5b3f33abf78c739ba89d1ade85f8ac4689406604704daf8bf7e6f0ada057e954e3a77897c23e3615ad47dd0c8d977

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3331bf010af6c8c8c5b0cf6fc56aff3e
SHA1 cce5915dd9fc978fce509fb27176dce0d0d764af
SHA256 2733fa2568c2b9337884bed971a69cc90dd31d970d8c7c5e9bb8398c0eaa393d
SHA512 6035a887f54117ae9fc8381946165bd2c8702f0650664fe83f4e05c100cee01ee04da7ec182db71f5869349473dab294822463791805cf162eba3d570521d454

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cafe93d8c21dd9b8a644b9f06bae372a
SHA1 22f2078af02436a05e54feff60de75600411dbd6
SHA256 b38a97418a5339f3e3bd5f075d5daa980274f237643ece872a34a18929d609b0
SHA512 b1b62a541180c567a1cfd78d4d092cbf26da16d7b2ef9c72e00badbfcd964463e62ed8f42e828b6c29d16486b4560c5cf19b47388a0b5171cd9983b3643b0ccb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d26bc4a6f54dc486fa19e8cc407f1376
SHA1 00eb208425413fe81763df2de00649ba91077f4a
SHA256 0538c380286b5036a48bb91fe79a39fbfded2115fdb8c4618f8ad2d4e5736cd3
SHA512 4a4608175088d5bc025f30afc6063c376dbf9118bab39f630d80c7038cbf732bde86c60e907e6eb1198833f7371f868d84819adae98b8344908cdeb3757906c8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 999fa0f0d679255ff42aa560d4705e20
SHA1 eb18d292fd0de1244f18db3d3c7af72f065761a9
SHA256 8399383157fe5d851234e7019db7decd253dc9b37cb42c2308c199eec547d2b3
SHA512 ee603151fc2ada62bdbc9e9d7c4d18124b1edde4c74ad457ee9d87d969ae01d683db5f21c80baf29ab9a28f3e2420feb001461c8aa77e22115fce074d1145fb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b5c427576c3ed7f958ddcd0c1cd8800b
SHA1 7732bc7f92f30f57971f98433e112496459926e0
SHA256 7b837f4f052a2df0c269bcf58f806948441734ff0668abbf36df15b3064d142a
SHA512 9caa73569fda78a1cea5951c6a73657c27e235a9e0b248c07b199a56c7208b468bc661c000bb836cc8c78bb04388a2059f67369807972684089451dd127281f2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a292449a993ca16985eff7b8cd9e60f0
SHA1 513af79adb97c6d771b6a2c09391a11b28fd4637
SHA256 9b13eb98009a4f78e8ece28a5a770c83f88510716c17f71d2b4258d9c695d57f
SHA512 7fb19710a65ac441f2c7fd32342b5fbc30bdf50b8460798de08cd7e519a003b3c700bb8ba77c27d04a60409054912d11015e727ea2a795cb5e07aa410245c7f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d7ab265409ff77cb55cc4cbf66971f0e
SHA1 0dac276a91a45fc41f1967f7770a148025b8b356
SHA256 811eae52c47252b6bfb66c68cb7263b830d32a5ed834c1f6ad8628ea8879778c
SHA512 bbb2205c35b0954db66b7a4ce3e15e677f9aca493a9f2a5fbce183c179645ad129ebfa4d474ff8d118a550f682ad7b60f31a47aa5083cb48d77451ecfb29adef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 27c888c6422d0b48a56f335d895969bc
SHA1 ad8decd1ff25c2dc0a13f52152883f9a29526394
SHA256 caf772b143661ce7c335a1b4bb7b6e896d28f784ee744ca65f5eb43c32871a4d
SHA512 fad624c008d720040badc4acaf63203683c7d26c851cd0f1674bf6d38fa79ae8037d01e9bbede86e9ad61d2435bcf90c0d0efdc87cf66616b20ffd230f75eb29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 feb0569ab1e9d6b76b30cfbc30c5657b
SHA1 b3661b20ab6f8c920bc72d1d9c9758f21b821349
SHA256 e8f493f5b68d88984a9497a98831e7cd7b72618d5908a32e76cdf3919b7badb9
SHA512 39fd12d6384f1da7f392ac4da4da849637892cc65ad0e9670c415a10658d0e2189f1d1c9878df944cbf86d0b48570b61798845389811e8ddaafec764950f2da6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0d6a5d446d7332023da5be62b020b7fb
SHA1 a9b476fe072bae831b23858956ee66749610552c
SHA256 38e029d263457f02c03c43e2196465da36d7653efb9d8ec8e7fcfea0ad49937b
SHA512 c3389e1f9ced24e22f37ff154f07a8a5fefc2179c371c797925791d064bea97105e5249c4a107db74bc1745664547fb9c7cd82c4d481eaedc62fa6dbdf133a2a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5ffe426f9f9eac10cf8ea3c3f58f1b24
SHA1 98db831d9cbbe375e202c1c7b8c994e0e6cf6eb8
SHA256 1ca541d105bbb51a893e123b77e90b4cc3c45e7e5cdcf4974346cd4b94f4a78f
SHA512 5ac13c58ea57d1aa81b8a266512cf6ac1b1b85d3ccfb3c72069f19405f40fa4c9aa2ba5656330219d7326d3a01c34cc900ff183c23b32d2beafa7feb3177de3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 22ae5f18fed1f0944d0676d3efc0d039
SHA1 821954f41141fa7ff0e16a5fe06ba22281684880
SHA256 171900a294b6c588e2a2ab7b44756e7c6a72d91da5e0815cb29d6521fe0a62ed
SHA512 5effb14c9d8a9d3cea6f072addb453aaa9ed4d0abf65f6c14438a99369c1cd9b7e46bbbf38a126747b8b6d9e12b8bbf110a1e01d4f2d48e6ae7424c83a322439

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 496c7b2587a3aebfb59c19d3559abd01
SHA1 9cd506c8bf4e8f607ea43995524d426f3ef4caff
SHA256 cdb6e1eb3185cff836a238542e87d6d03a967d03e19f8bf6d5b4b2036de720a0
SHA512 e26d35d0adb6e18b1d04a8087a39aad3e33e69d4d31e713817fc75e5e952d2ec9fbaf8e050e60235fccbe8faddab841091c81f3ec8ba6f2e06665dce73e15138

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b848775dd06abd5f0b8ba1493a7e6db6
SHA1 a7d7b584f1649e8e6d6dda1bcd6ad17afbd68806
SHA256 20d479442bf2a4929c6444278d6c715306035ab3addc1b4d17b174a82dfad1fa
SHA512 032e05c306445b4b0c0389b0d5cd473a0757a0194543409756f0fea96146634679a43be0573000e5a8154767ffdaa54c4c514d230a2b05230d2db0cb2a32113a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e94544c75cb252148635165ecfffce8d
SHA1 d4dcaa62cdf0e16287023c6a84ceceb290a1b2d6
SHA256 bdb95efed3b7d1ccfb4433c7ff35c26a39a459ef87fa9b78370e4cd515e911d9
SHA512 c5fdd58612ef02c0329488c7702962ae249dd421fe80505f5db64ba28d38d6607c7679501412b714ef7527e583646efdf2e1889984ad2ccfbe26b3991b031ccc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 23a9484619466c388c9d8f118fb5f14c
SHA1 12c6b21c24e551fef3ead5ca305ebe7c73fa5830
SHA256 456d2274f1f68c081a26c0cb9c00dd4661b05bcf300817a88ea3bfc4eb24db25
SHA512 e9e5839827b6e493f4bc638a8fb127a4e3ac42cf8823aa95d6b68c5f94e3cf4fd1cec8f2094c2ab66c84e28436f46bc5f6ea1f6e8155a9a81b11fd251ee33a21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 95bf51d06769662e44d6abb82ccad5b3
SHA1 f47f5d84755bd266f7b662927c4b6b95fcbccf71
SHA256 f87539f6f525c1467db881e836810c5d6374db0ae78a5058d7bff9feefedc45d
SHA512 34cc45c873a81511c510c4472b2287f8b3442fb4a9c93731595baa2fb6e1b8ce217ae1fc6e3bae09db94a67ccb303d5bb909784d60845fb355f9bb93f1e6defc